Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Freelancer calendar <= 1.01 SQL Injection Vulnerability
Nov 19 2011 01:20AM
muuratsalo experimental hack lab (muuratsalo gmail com)
I have found multiple a SQL injection vulnerability in Freelancer
calendar <= 1.01.
It seems to be version 1.01 as you can see in the 'Files' section of
the Sourceforge page.
I reported the vulnerability to the vendor but no response as stated
in the advisory.
[ more ]
Copyright 2010, SecurityFocus