The latest wave of attacks is exploiting an Adobe Flash vulnerability that appears to be coming from the same series of attacks originating from China. The intent, as in previous attacks, has been to steal online gamers’ password credentials. Researchers worry that World of Warcraft players and other gaming jocks aren’t the only users at risk in these Website attacks. The latest attack works like this: A vulnerable Website is first compromised with a. SQL injection attack, and the malicious script thats injected points a. browser to a malicious URL that carries ShockWave files that exploit the Adobe Flash bug.”]
Source: https://www.darkreading.com/analytics/new-sql-injection-attacks-exploit-adobe-flash-flaw