• info
• discussion
• exploit
• solution
• references

Lighthouse Development Squirrelcart SQL Injection Vulnerability

No exploit is required.

The following proof of concept is available:

http://www.example.com/index.php?crn='SQL_INJECTION&action=show&show_products_mode=cat_click&PHPSESSID=2069dbe1646bdc46e4e78718e76e6d15