HNS MAIN FEED
Saturday, 05:23 EST
- Zero-day vulnerabilities in Firefox extensions discovered
- Three charged with Comcast.net hijacking
- Cloud computing security benefits, risks and recommendations
- Poisoned Google search results
- World’s first wireless USB external hard drive
- A look at Securitybyte & OWASP AppSec Asia Conference 2009
- Biggest threats to federal systems and critical infrastructure
- Are 64-bit Windows inherently safer?
- NSA on cyber attacks and Microsoft collaboration
- New books: ModSecurity, Snow Leopard, social Web applications
- Vulnerability in IBM SolidDB memory caching software
- Two arrested for Zbot Trojan
Joomla! "com_jshop" Component "pid" Parameter SQL Injection
03 November 2009
"com_jshop" is a component for the Joomla! content manager. The application is exposed to an SQL injection issue because it fails to sufficiently sanitize user-supplied data to the "pid" parameter of the "com_jshop" component before using it an SQL query.
Ref: http://www.securityfocus.com/bid/36808
09.44.82 - CVE: Not Available
Platform: Web Application - SQL Injection
Ref: http://www.securityfocus.com/bid/36808
09.44.82 - CVE: Not Available
Platform: Web Application - SQL Injection