Omnistar Article Manager Multiple SQL Injection Vulnerabilities

info
discussion
exploit
solution
references

Omnistar Article Manager Multiple SQL Injection Vulnerabilities

Attackers can exploit these issues via a web client.

The following example URIs are available:

http://www.example.com/articles/comments.php?article_id='[sql]
http://www.example.com/articles/article.php?op=save&article_id='[sql]
http://www.example.com/articles/pages.php?page_id='[sql]