Author Topic: [Security Report on Current Version 0.7] BLIND SQL INJECTION  (Read 9015 times)

0 Members and 1 Guest are viewing this topic.

Offline
*
[Security Report on Current Version 0.7] BLIND SQL INJECTION
« on: April 23, 2014, 10:16:55 AM »
Hi,

I've installed it in my server for testing and i did some vulnerability testing and it seems like i found some Vulnerability which is kinda Dangerous xD

Here' the report file " http://s000.tinyupload.com/index.php?file_id=87748100371844926576bwx"
Dev, please fix this.

Thank You
« Last Edit: April 23, 2014, 09:29:58 PM by Administrator »

Offline
*
Re: [Security Report on Current Version 0.7] BLIND SQL INJECTION
« Reply #1 on: April 23, 2014, 09:32:13 PM »
Thank you for your report, we are working on new version which will compile all from source and use linux user passwords including root and we will fix this issue.
AntiDDoS Protection (web + mail)
http://centos-webpanel.com/website-ddos-protection-proxy

Join our Development Team and get paid !
http://centos-webpanel.com/develope-modules-for-cwp


Services Monitoring & RBL Monitoring
http://centos-webpanel.com/services-monitor


Do you need Fast and FREE Support included for your CWP linux server?
http://centos-webpanel.com/noc-partner-list
Installation Instructions
http://centos-webpanel.com/installation-instructions
Get Fast Support Here
http://centos-webpanel.com/support-services