Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

Re: jara 1.6 sql injection vulnerability

From: Henri Salo <henri () nerv fi>
Date: Tue, 22 Nov 2011 12:45:12 +0200
On Sun, Oct 23, 2011 at 01:06:07AM +0200, muuratsalo experimental hack lab wrote:

jara 1.6 sql injection vulnerability

download  http://sourceforge.net/projects/jara/files/v1.6/jarav16.zip

author      muuratsalo
contact     muuratsalo[at]gmail.com

exploit
http://localhost/jara/view.php?id=[SQL Injection]


CVE-identifiers for Jara 1.6 issues: http://seclists.org/oss-sec/2011/q4/200

- Henri Salo
Previous By Date Next
Previous By Thread Next

Current thread: