mailing list archives
Aleris Software Systems Web Publisher Calendar SQL injection
From: Joseph.giron13 () gmail com
Date: 23 Oct 2007 22:04:48 -0000
There exists an SQL injection vulnerability within the calendar section of a Aleris Software Systems web publisher. It
seems thats Aleris uses this same calendar with every site they make that utilizes the publisher.
I reported this to aleris and am awaiting a response. No fix yet.
- Aleris Software Systems Web Publisher Calendar SQL injection Joseph . giron13 (Oct 24)