Justin Samuel

Advisory: AWBS magic_quotes_gpc “Off” SQL Injection and XSS Vulnerabilities Release Date: 2007-06-10 Last Modified: 2007-07-26 Author: Justin Samuel [http://www.justinsamuel.com] Application: AWBS < 2.6.0 Severity: Highly Critical Impact: Disclosure of sensitive information Cross site scripting Vendor Status: Vendor released version 2.6.0 to address issue. Testing still needed to verify that issue is corrected. Vendor: Total Online [...]