Flo CMS - archivem SQL Injection

2013-09-03T00:00:00
ID EXPLOITPACK:7403D6A7542233014E9C840ED6B2ED54
Type exploitpack
Reporter ACC3SS
Modified 2013-09-03T00:00:00

Description

Flo CMS - archivem SQL Injection

                                        
                                            source: https://www.securityfocus.com/bid/62186/info

Flo CMS is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query.

Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. 

http://www.example.com/blog/index.asp?archivem='