Entries of July, 2010

Please download/view the original advisory here. The Joomla component com_golfcourseguide fails to sanitize the user input and therefore suffers from a remote SQL injection vulnerability. Example URL index.php?option=com_golfcourseguide&view=golfcourses&cid=1&id=[SQL Injection] Versions affected v0.9.6.0 beta, v1 beta

(Continue reading…)

During the last weeks I have given Mobile Device Security a big thought. As you may know, especially mobile phones are one of the most widely spread sort of device in the world. Almost everyone living in the western world has at least one of them. It is obvious to think further and say that […]

(Continue reading…)

Today I am releasing my Specialist Bed and Breakfast Website SQL Injection Exploit (remote). [Download] Description The Specialist Bed and Breakfast Website SQL Injection Exploit takes advantage of a SQL injection vulnerability JaMbA discovered on 30th June 2010. The exploit source code also contains the table structure of the vulnerable product. About the vulnerability Learn […]

(Continue reading…)