inurl:"comment.php?serendipity"

• SHDB
• 1430 阅读

• 日期：2004-10-05
• 类别：
  • Advisories and Vulnerabilities
• 作者：anonymous
• 语法：inurl:"comment.php?serendipity"

• serendipity is a weblog/blog system, implemented with PHP. It is standards compliant, feature rich and open source.For an attacker it is possible to inject SQL commands.http://www.securityfocus.com/bid/11269/discussion/