info
discussion
exploit
solution
references
PHP-Fusion Srch_Where Parameter SQL Injection Vulnerability
This issue can be exploited through a web client.
A proof of concept is available:
/data/vulnerabilities/exploits/PHP-Fusion_poc.txt
Privacy Statement
Copyright 2010, SecurityFocus
