The Latest in IT Security

Expert Finds 8 Files Vulnerable to SQL Injection in Yahoo HK Promotions Pages

08
Apr
2014

Security researcher Behrouz Sadeghipour has identified several SQL Injection vulnerabilities in a Hong Kong subdomain of Yahoo. He reported his findings to the company and all the security holes have been fixed. According to the expert, the flaws have been found in various files on the Hong Kong promotions subdomain (hk.promotions.yahoo.com). He decided to analyze this subdomain because it contains a lot of Flash files and PHP scripts that could be vulnerable, and it doesnt appear th…

Related posts:
  1. Expert Finds RCE Flaw in Yahoo After Logging in with “Admin/Admin” Credentials
  2. Expert Finds Remote Code Execution Vulnerability in Yahoo Server – Video
  3. Expert Finds SQL Injection and RCE Vulnerabilities in Deutsche Telekom Systems
  4. Expert Finds Remote Code Execution Vulnerability on eBay – Video
  5. Security Expert Calls Yahoo’s Implementation of HTTPS “Troubling”

Tags:  
Written by Softpedia
0 Comments
Comments are closed.

Categories

SUNDAY, FEBRUARY 23, 2025
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments