Geeks With Blogs


INauseous() Shawn Cicoria - Solution Architect, Craftsman and Artisan - INauseous() - Main Blog Here:

This is what happens when you skimp on resources for projects, take shortcuts, and frankly, hire amateurs.

So many times I've shown up on projects and client sites, take a quick look at the code, then see how vulnerable a site is with injection attacks.  In NYC there's a system in place run by the Government that has this vulnerability to this day.  I informed the owners of the system of the presence, but they shrugged it off.  At that point it was all CYA on notification about the issue as I was there for something else.

'Hackers' deface UN site

Posted on Monday, August 13, 2007 10:11 AM | Back to top

Comments on this post: UN Website Hacked using simple SQL Injection

# re: UN Website Hacked using simple SQL Injection
Requesting Gravatar...
SQL injections and Cross Site Scripting are to be found everywhere... there's too many people that still "dont' get them", even if they've been out for ages...
Left by Daniele Muscetta on Aug 13, 2007 10:34 AM

Comments have been closed on this topic.
Copyright © Shawn Cicoria | Powered by: