LulieBlog 'id' Parameter Multiple SQL Injection Vulnerabilities

Attackers can use a browser to exploit these issues.

The following proof-of-concept URIs are available.

http://www.example.com/Admin/comment_accepter.php?id=[id_comment]
http://www.example.com/Admin/article_suppr.php?id=[id_article]
http://www.example.com/Admin/comment_refuser.php?id=[id_comment]


 

Privacy Statement
Copyright 2010, SecurityFocus