Woltlab Info-DB Info_db.PHP Multiple SQL Injection Vulnerabilities

Woltlab Info-DB Info_db.PHP Multiple SQL Injection Vulnerabilities

No exploit is required.

Example URIs have been provided:

http://www.example.com/info_db.php?action=file&fileid=[SQL-Injection]
http://www.example.com/info_db.php?action=file&fileid=59&subkatid=[SQL-injection]

An exploit is available.

/data/vulnerabilities/exploits/woltlab.info_db.php