KEIL Software photokorn 1.542 - 'index.php' SQL Injection Vulnerability

2008-06-18T00:00:00
ID EDB-ID:31938
Type exploitdb
Reporter t@nzo0n
Modified 2008-06-18T00:00:00

Description

KEIL Software photokorn 1.542 'index.php' SQL Injection Vulnerability. Webapps exploit for php platform

                                        
                                            source: http://www.securityfocus.com/bid/29808/info

KEIL Software's photokorn is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data.

A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

This issue affects photokorn 1.542; other versions may be vulnerable as well. 

The following proof-of-concept URI is available:

http://www.example.com/[path]/index.php?action=[SQL]