Latest LQ Deal: Complete CCNA, CCNP & Red Hat Certification Training Bundle
Go Back > Forums > Linux Forums > Linux - News > Syndicated Linux News
User Name
Syndicated Linux News This forum is for the discussion of Syndicated Linux News stories.


  Search this Thread
Old 12-29-2006, 08:54 PM   #1
LXer NewsBot
Registered: Dec 2005
Posts: 95,940

Rep: Reputation: 96
LXer: Hlstats "killLimit" Parameter Handling Remote SQL Query Injection ...

Published at LXer:

A vulnerability has been identified in HLstats, which could be exploited by attackers to execute arbitrary SQL commands. This issue is due to an input validation error in the "hlstats.php" script that does not validate the "killLimit" parameter before being used in SQL statements, which could be exploited by malicious users to conduct SQL injection attacks.



Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
LXer: Gnu Tar "GNUTYPE_NAMES" Record Handling Directory Traversal ... LXer Syndicated Linux News 0 11-28-2006 06:54 AM
LXer: Sql Injection Weaknesses Found in Mambo, Joomla LXer Syndicated Linux News 0 06-28-2006 05:33 AM
LXer: MySQL addresses SQL injection vulnerability LXer Syndicated Linux News 0 06-02-2006 08:54 AM
LXer: PostgreSQL addresses SQL injection vulnerabilities LXer Syndicated Linux News 0 05-24-2006 10:21 PM
LXer: Sql Injection Vulnerability LXer Syndicated Linux News 0 01-24-2006 04:16 PM > Forums > Linux Forums > Linux - News > Syndicated Linux News

All times are GMT -5. The time now is 08:58 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration