• info
• discussion
• exploit
• solution
• references

WebSpell Gallery.PHP SQL Injection Vulnerability

Attackers can exploit these issues via a web client.

The following proof-of-concept exploit is available:

• /data/vulnerabilities/exploits/webSPELL_sql.txt