Информационная безопасность
[RU] switch to English


Дополнительная информация

  Ежедневная сводка ошибок в Web-приложениях (PHP, ASP, JSP, CGI, Perl )

  Wordpress 2.1.1 - Multiple Script Injection Vulnerabilities

  ViewCVS 0.9.4 issues

  MTCMS multiple upload vulnerabilities

  XXS in script Phorum

From:Scarlet Pimpernel <kishfellow_(at)_yahoo.com>
Date:27 февраля 2007 г.
Subject:[Full-disclosure] Multiple SQL Injection bugs in TCS website

Hello list,

The website of TCS (Tata Consultancy Services) is prone to multiple SQL injection bugs. I already sent them an email back in December 2006. They have not fixed the bug just yet, so Iam going to disclose the details here.

http://kishfellow.blogspot.com

The scripts are prone to multiple XSS, and SQL bugs. A sample screenshot for a potential SQL injection is given in my blog.

Cheers :)
Kish

Full-Disclosure - We believe in it !


Remember there is alwayz someone who knows more than us out there


---------------------------------
Don't get soaked.  Take a quick peak at the forecast
with theYahoo! Search weather shortcut.

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород