WSN Guest 'wsnuser' Cookie Parameter SQL Injection Vulnerability

Attackers can use a browser to exploit this issue.

The following example data is available:

GET /wsnguest/index.php?debug=1 HTTP/1.0
Host: www.example.com
Cookie: wsnuser=[SQL Injection]


 

Privacy Statement
Copyright 2010, SecurityFocus