SQL injection attack

eBay Patches Critical XSS, SQL Holes

Developers at the popular online auction site eBay recently patched two potentially critical vulnerabilities, a cross-site scripting bug and a SQL injection vulnerability.

Barracuda Networks found themselves the victim of an SQL injection
attack over the weekend. The breach did not affect any financial
information but did compromise a database containing the names and
e-mails of some of the company’s partners, employees and leads.

A site belonging to the Savannah GNU free software archive was attacked recently, leading to a compromise of encrypted passwords and enabling the attackers to access restricted project material.

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.