Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Identifying Blind SQLi in OpenX

From: publists () enablesecurity com
Date: 1 Apr 2009 20:39:30 -0000
Just posted an advisory describing some of the vulnerabilities fixed in the latest OpenX update. Also posted a video 
showing how these issues were identified and how they could be exploited. Nothing new really but hope that it will be 
'educational' :)


The video:
http://www.youtube.com/watch?v=kiNeiMS2Iu0

Corresponding advisory:
http://resources.enablesecurity.com/advisories/openx-2.6.4-multiple.txt

- sandro
enablesecurity.com

------------------------------------------------------------------------
This list is sponsored by: InfoSec Institute

No time or budget for traveling to a training course in this fiscal year? Check out the online penetration testing 
courses available at InfoSec Institute. More than a boring "talking head", train in our virtual labs for a total 
hands-on training experience. Get the certs you need as well: CEH, CPT, CEPT, ECSA, LPT. 

http://www.infosecinstitute.com/request_online_training.html
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: