Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs

WSN Knowledge Base Multiple SQL Injection Vulnerabilities

No exploit is required.

Sample URI have been provided:

http://www.example.com/index.php?action=displaycat&catid=1[SQL]

http://www.example.com/index.php?todo=orderlinks&action=displaycat&
catid=1&orderlinks=id&ascdesc=desc&perpage=1[SQL]

http://www.example.com/index.php?todo=orderlinks&action=displaycat&
catid=1&orderlinks=id&ascdesc=1[SQL]

http://www.example.com/index.php?todo=orderlinks&action=displaycat&
catid=1&orderlinks=[SQL]

http://www.example.com/comments.php?id=[SQL]

http://www.example.com/memberlist.php?action=profile&id=1[SQL]







 

Privacy Statement
Copyright 2009, SecurityFocus