CVE-2009-3584

Related Files

SQL-Ledger Cross Site Request Forgery / Local File Inclusion / SQL Injection

Posted Jan 26, 2010

Authored by Chris Travers

SQL-Ledger has been patched to address cross site request forgery, local file inclusion, no secure flag on cookie, default administrator password and remote SQL injection vulnerabilities.

tags | advisory, remote, local, vulnerability, sql injection, file inclusion, csrf

advisories | CVE-2009-3580, CVE-2009-3582, CVE-2009-3583, CVE-2009-4402, CVE-2009-3584

SHA-256 | 285bfdfd6459c517b7d7fdad4e66f894515d9a97b2c09fb44c8c4036cdd19c20

Download | Favorite | View

SQL-Ledger XSS / XSRF / SQL Injection / LFI

Posted Dec 22, 2009

Authored by Alexander Klink

SQL-Ledger suffers from cross site scripting, cross site request forgery, local file inclusion, SQL injection, and various other security vulnerabilities.

tags | exploit, local, vulnerability, xss, sql injection, file inclusion, csrf

advisories | CVE-2009-3580, CVE-2009-3581, CVE-2009-3582, CVE-2009-3583, CVE-2009-3584

SHA-256 | 3829bdb05149d1bc7598b7a78e6ebb24bc4dda65fe6aa1226850034c3332a707

Download | Favorite | View