Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <20120914124032.GA4728@kludge.henri.nerv.fi>
Date: Fri, 14 Sep 2012 15:40:32 +0300
From: Henri Salo <henri@...v.fi>
To: oss-security@...ts.openwall.com
Subject: CVE-request: SMF index.php msg parameter SQL-injection (2005)

Hello list,

Old SQL-injection security issue in SMF does not have CVE-identifier. Could you please assign one from year 2005, thanks.

Affected versions: <= 1.0.4
Fixed in 1.0.5

References:
http://osvdb.org/17458
http://secunia.com/advisories/15784/

- Henri Salo
ps. never too late

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.