Bleeping Computer

New Joomla SQL Injection Flaw Is Ridiculously Simple to Exploit

The Joomla CMS project released today Joomla 3.7.1 to fix an SQL injection flaw that allows attackers to execute custom SQL code on affected systems and take over vulnerable sites. Sucuri analyst Marc ...
ZDNet

Reports: SQL injection attacks and malware led to most data breaches

With millions of personal records and payment card information stolen on a regular basis, several recently released reports independently confirm some of the main sources of breaches. Not surprisingly ...
CMS Wire

How They Hack Your Website: Overview of Common Techniques

Digging into how sites and web content management systems are most often hacked, and what you can do to reduce the risk of it happening to you. (Editor's note: This story has been updated.) We hear ...
Dark Reading

10 Reasons SQL Injection Still Works

After all of these years, SQL injection vulnerabilities still stand as an old reliable for attackers seeking to break into corporate databases. "SQL injection is still out there for one simple reason: ...
Dark Reading

Royal Navy Attack Stresses SQL Injection Dangers

The danger of SQL injection last week hit the limelight once again when the British Royal Navy's website was shut down temporarily in response to an attack that had Royal Navy brass wondering whether ...
Infosecurity-magazine.com

XSS and SQL Injection Plague Several NMSes

A slew of cross-site scripting (XSS) and SQL injection (SQLi) vulnerabilities that affect several network management system (NMS) products has been uncovered. Security firm Rapid7 has released details ...