XSS vulnerability found via injection in the parameter address
Mods please move if posted in wrong section, I wasnt sure where to ask this one.
There are several of us that use an open source program called yiimp,
several of our sites were attacked last night and I am reaching out to you guys to see if then vulnerability can be fixed quickly.
I believe the offending file is
my security scan shows
for the vulnerability
hi guys
i am trying to convert a uppercase var to a lowercase var and the result is pass in to another var. But i kept getting error from the variable that will be containing the result of the conversion of uppercase to the lowercase.
DB_SID=TEST
DB_SID_SM=/opt/$DB_SID | tr ''... (5 Replies)
I'm working on an AIX Unix LPAR (AIX 3.5 00C3C9904C00 as returned by uname -a)
I can access this box using telnet, port 22 using adress IP A and B
A=AA.AA.XX.XX and B=AA.AA.YYY.YYY
I can confirm these 2 are the same space, I can see
I can't find address B listed anywhere... so I wonder what... (1 Reply)
NEWS:
UUCP vulnerability found in the command line argument handling of uucp which could be exploited by a local user to obtain uucp uid/gid.
http://www.linuxhelp.net/article.pl?sid=02/02/20/0335219&mode=&threshold= (1 Reply)