BugTraq
Re: Sql injection in jPortal version 2.3.1 (module banner) Jun 12 2005 09:22PM
anonymous wp pl (1 replies)
Re: Sql injection in jPortal version 2.3.1 (module banner) Jun 13 2005 09:08PM
exon (exon home se)
anonymous (at) wp (dot) pl [email concealed] wrote:
> "After that, You gain login and password of administrator."
>
> Bull shit.
> In 2.3.1 version an admin password is "hashed". You gain "f95aead0f1f7481cf4d4acfe61c10fce" instaed password.
>
>

It's still a Bad Thing(tm). See http://www.openwall.com/john for details.

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus