Dark Reading

Cacti Monitoring Tool Spiked by Critical SQL Injection Vulnerability

A critical vulnerability in the Cacti Web-based open source framework for monitoring network performance gives attackers a way to disclose Cacti's entire database contents — presenting a prickly risk ...
Dark Reading

CISA Seeks to Curtail 'Unforgivable' SQL Injection Defects

SQL injection vulnerabilities continue to plague supply chains, prompting a joint alert from the Cybersecurity and Infrastructure Security Agency (CISA) and the Federal Bureau of Investigation (FBI) ...
Ars Technica

The Pirate Bay compromised by SQL injection exploit

Ouch. SQL injection is pretty basic stuff you code around. It's not like it won't happen. I guess not everyone is a programmer though. They should have spotted this, somehow. Someone once said that ...
Ars Technica

The Pirate Bay compromised by SQL injection exploit

Krebs unsuccessfully attempted to bring the issue to the attention of The Pirate Bay staff, and could not get a statement from them about the vulnerability. In his effort to get some kind of response, ...
CSOonline

U.S. Says SQL Injection Caused Major Breaches

The huge data thefts at Heartland Payment Systems and other retailers resulted from SQL injection attacks and could finally push retailers to deal with Web application security flaws. A group of ...