Author Topic: phpmybibli (PMB) Version 3.4.8  (Read 1887 times)

0 Members and 1 Guest are viewing this topic.

Offline worf2910

  • /dev/null
  • *
  • Posts: 9
  • Cookies: 0
    • View Profile
phpmybibli (PMB) Version 3.4.8
« on: August 29, 2011, 02:29:52 pm »
Hi all.

Just a question.
Im using phpmybibli(PMB) a library system Version 3.4.8
I've read in the web that before this version the program was vulnerable to SQL injection.
Is this version still vulnerable or it is secure?

Thank a lot for an answer
Cheers
Worf2901

xor

  • Guest
Re: phpmybibli (PMB) Version 3.4.8
« Reply #1 on: August 29, 2011, 02:59:13 pm »
Generally if a version is vulnerable, it will remain vulnerable until updated, and generally the version number will change when that happens.

I see you've also asked this question on several hacker / security forums. Have you tried searching for the vulnerability yourself, where did you hear about it?

The only reported vulnerabilities I could find were in older versions and none of them were SQLi, but that doesn't necessarily mean that this version is not vulnerable.

Offline worf2910

  • /dev/null
  • *
  • Posts: 9
  • Cookies: 0
    • View Profile
Re: phpmybibli (PMB) Version 3.4.8
« Reply #2 on: September 02, 2011, 04:59:50 am »
Yes, i've also asked this question on other hacker/security forum because I'm really worried about the vulnerability of this program. I've heard about it on several web sites. I dont know nothing about SQLi but the web sites I've visited reported a SQLi vulnerability.
Thx for the answer