One of the biggest online photo sharing website in the world, Flickr which is owned by Yahoo, was recently impacted by critical web application vulnerabilities, which left website’s database and server vulnerable for hackers. A security researcher from Egypt named Ibrahim Raafat, has found SQL injection vulnerabilities on Flickr Photo Books, new feature for printing custom photo books through Flickr that was launched 5 months ago. Two parameters were found vulnerable to Blind SQL injection and one Direct SQL Injection that allowed researcher to query the Flickr database for its content by the injection of SQL SELECT statements. Successful SQL …continue reading
For more information go to http://www.NationalCyberSecurity.com, http://www. GregoryDEvans.com, http://www.LocatePC.net or http://AmIHackerProof.com
The post Flickr Hacked, Multiple SQLi and RFI spotted appeared first on National Cyber Security.
View full post on National Cyber Security