Red Hat patches multiple web application Vulnerabilities

Posted by Unknown at 10:03 PM

RED HAT has fixed multiple web application security issues that allowed hackers to extract website database using Blind SQL injection. Red Hat also confirmed a cross site scripting and Local File Inclusion Vulnerabilities on their website.


Blind SQL injection is identical to normal SQL Injection except that when an attacker attempts to exploit an application, rather than getting a useful error message, they get a generic page specified by the developer instead. This makes exploiting a potential SQL Injection attack more difficult but not impossible.

Local file inclusion is a vulnerability that allows the attacker to read files, that are stored locally through the web application.This happens because the code of the application does not properly sanitize the include() function

Technical details are not available at the moment about vulnerable URLs for security issue. Mohamed recently acknowledged by Facebook and Etsy for reporting serious vulnerabilities in their mobile apps. Red Hat also list him on their website under WhiteHat hackers.

0 comments:

Post a Comment

Subscribe to: Post Comments (Atom)

Like Me On Facebook Mr. Deadly Hacker

Aman Badhania writes this blog to help computer users with problems related to web services and getting the most out of their own websites.
Feel The Power Of Cyber Hacking Mr. DeadlyHacker