Group-Office 'modules/notes/json.php' SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example URI is available:

http://www.example.com/www/groupoffice-com-3.5.9/modules/notes/json.php?task=category&category_id=999999 [SQLi]


 

Privacy Statement
Copyright 2010, SecurityFocus