HNS MAIN FEED
Saturday, 01:48 EST
- Zero-day vulnerabilities in Firefox extensions discovered
- Three charged with Comcast.net hijacking
- Cloud computing security benefits, risks and recommendations
- Poisoned Google search results
- World’s first wireless USB external hard drive
- A look at Securitybyte & OWASP AppSec Asia Conference 2009
- Biggest threats to federal systems and critical infrastructure
- Are 64-bit Windows inherently safer?
- NSA on cyber attacks and Microsoft collaboration
- New books: ModSecurity, Snow Leopard, social Web applications
- Vulnerability in IBM SolidDB memory caching software
- Two arrested for Zbot Trojan
RunCMS "forum" Parameter SQL Injection
06 November 2009
RunCMS is a PHP-based content manager. The application is exposed to a SQL injection issue because it fails to sufficiently sanitize user-supplied data to the "forum" parameter of the "modules/forum/post.php" script before using it in an SQL query.
Ref: http://www.securityfocus.com/bid/36816
09.44.84 - CVE: Not Available
Platform: Web Application - SQL Injection
Ref: http://www.securityfocus.com/bid/36816
09.44.84 - CVE: Not Available
Platform: Web Application - SQL Injection