TR News SQL Injection and File Upload Vulnerabilities

TR News SQL Injection and File Upload Vulnerabilities
BugsAlert Home > TR News SQL Injection and File Upload Vulnerabilities




His0k4 has discovered two vulnerabilities in TR News, which can be exploited by malicious users to compromise a vulnerable system, and by malicious people to conduct SQL injection attacks. Be sure to check if your system is missing security updates or have insecure applications installed: http://secunia.com/software_inspector/ Feature Overview - The Secunia Software Inspector: * Detects insecure versions of applications installed * Verifies that all Microsoft patches are applied * Assists you in updating your system and applications * Runs through your browser. No installation or download is required. Original Source: http://secunia.com/advisories/29814/ Learn more about TR News SQL Injection and File Upload Vulnerabilities


Tags: news sql injection file upload vulnerabilities

Related Items
U.S. Presidency Race Ends, New Spam Run Begins
CVE-2008-2848 (DekiWiki)
Firebird Long Usename Processing Remote Buffer Overflow Vulnerability
CVE-2007-6381 (TYPO3)
file related functions/constructs are vulnerable if path is based on user input
phpFix Two SQL Injection Vulnerabilities
CVE-2008-1394 (Plone CMS)