Dev Web Management System 1.5 download_now.php target Parameter SQL Injection

2005-12-27T00:00:00
ID EDB-ID:26977
Type exploitdb
Reporter retrogod@aliceposta.it
Modified 2005-12-27T00:00:00

Description

Dev Web Management System 1.5 download_now.php target Parameter SQL Injection. CVE-2005-4554. Webapps exploit for php platform

                                        
                                            source: http://www.securityfocus.com/bid/16063/info
  
Dev Web Management System is prone to multiple input validation vulnerabilities. These issues may allow SQL injection and cross-site scripting attacks.
  
Dev Web Management System versions 1.5 and earlier are prone to these issues. 

http://example.com/[path]/download_now.php?target=9999999999999[SQL]