K-Links Platinum Vulnerabilities Allow XSS and SQL Injection Attacks
According to reports coming from security advisory - Secunia, certain malicious vulnerabilities in K-Links Platinum Website have been detected. The Website checks reciprocal links.
Also, as per the reports, malicious people could exploit these vulnerabilities to carry out cross-site scripting (XSS) attacks or SQL injection attacks.
Describing an XSS attack, security experts said that it relies on a Web program to send harmful code that is a browser-side piece of script to another end-user. And in the process, the attacker may use any of the techniques for encoding the tag's malicious portion, like Unicode, therefore, the request might appear less suspicious to the end-user.
On the other hand, in an SQL injection attack, security experts said that malicious authors des...
» SPAMfighter News - 19-08-2008