TUCoPS :: HP Unsorted F :: b06-4502.htm

FREEKOT SQL Injection Vulnerability
- FREEKOT SQL Injection Vulnerability
- FREEKOT SQL Injection Vulnerability

KAPDA New advisory

Vendor: http://www.digiappz.com
Vulnerability: SQL_Injection

Date :
Found : Aug 10, 2006
Vendor Contacted : N/A
Release Date : Aug 30, 2006

About Freekot :
FREEKOT is a free tool which allows you to insert a random quotation system or a quote of the day in your website.

Input passed to the "login" and "password" parameters when logging into the administration section isn't properly sanitised before being used in a SQL query.
This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.


No patch`s released yet by vendor.

Original Advisory:

Credit :
FarhadKey of KAPDA
farhadkey [at} kapda  ir
Kapda - Security Science Researchers Insitute of Iran

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2023 AOH