http://irk4z.wordpress.com/2008/09/14/sql-column-truncation-vulnerability/ security blog Sun, 15 Nov 2009 07:15:36 +0000 http://wordpress.com/ hourly 1 http://irk4z.wordpress.com/2008/09/14/sql-column-truncation-vulnerability/#comment-90 SECFORCE :: Blog » Blog Archive » WordPress SQL column truncation vulnerability Tue, 07 Oct 2008 23:23:28 +0000 http://irk4z.wordpress.com/?p=55#comment-90 [...] This vulnerability has been published some days ago where an attacker could create a duplicated “admin” user and recover the legitimate “admin” password. SQL column truncation is an attacking technique whereby an attacker take advance of some kind of mismatch between an application and the database structure used by it. [...] [...] This vulnerability has been published some days ago where an attacker could create a duplicated “admin” user and recover the legitimate “admin” password. SQL column truncation is an attacking technique whereby an attacker take advance of some kind of mismatch between an application and the database structure used by it. [...]

]]>