Dark Reading

Cacti Monitoring Tool Spiked by Critical SQL Injection Vulnerability

A critical vulnerability in the Cacti Web-based open source framework for monitoring network performance gives attackers a way to disclose Cacti's entire database contents — presenting a prickly risk ...
Dark Reading

New Plug-ins Help Firefox Find XSS, SQL Injection

4:14 PM -- Two new Firefox plug-ins were released last month to assist developers and security professionals in testing for cross-site scripting (XSS) and SQL injection vulnerabilities. Even though ...
Bleeping Computer

Critical flaw in LayerSlider WordPress plugin impacts 1 million sites

Part of the vulnerable code (Wordfence) The structure of the possible queries limits the attack to time-based blind SQL injection, meaning that the attackers need to observe the response times to ...