Hi Kevin,
As you can see the whole issue was found and researched by a
member(matrix_kller) at the h4cky0u.org site, i was told that the
vendors had been notified and that he had never heard back from them.
If that is not true then i apologise on his behalf. Anyways i would be
looking forward for
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
h4cky0u wrote:
> VENDOR STATUS:
> ===
> The vendors were contacted but no response received.
As one of the core developers I would like to say two things.
First - thank you for finding and reporting this bug. We have yet to be
able to
TITLE:
=
phpWebSite 0.10.1 Full SQL Injection
SOFTWARE:
==
phpWebSite 0.10.1 Full
INFO:
=
phpWebSite provides a complete web site content management system.
DESCRIPTION:
phpWebSite 0.10.1 full is vulnerable to an sql injection attack. Here
is an example:
http://loca