OpenBB Index.PHP Remote SQL Injection Vulnerability

The following proof of concept has been made available by Albert Puigsech Galicia <ripe@7a69ezine.org>:

http://www.example.com/index.php?CID=1%20<something>

where <something> represents a SQL query.


 

Privacy Statement
Copyright 2010, SecurityFocus