Con-IMedia SQL injection flaws and fixes-vulnerability warning-the black bar safety net

2011-12-04T00:00:00
ID MYHACK58:62201132514
Type myhack58
Reporter 佚名
Modified 2011-12-04T00:00:00

Description

Title: Con-IMedia SQL inj: vulnerable

Author: nGa Sa Lu [ GaNgst3r ]

Test platform: Vista

Programming language : php

================================================================

SQL Error Statement :

Warning: mysql_fetch_array(): supplied argument is not a valid MySQL result resource in

/homepages/18/d158663934/htdocs/moneysystems/modules/mod_main.php on line 9 2

[+] http://www.badguest.cn/index1.php?linkid=[your SQL HERE]

[+] Demo :

Repair

Filter index1. php page linkid parameter input for digital