Site@School slideshow_full.php album_name Variable SQL Injection

2008-01-03T00:00:00
ID OSVDB:40197
Type osvdb
Reporter OSVDB
Modified 2008-01-03T00:00:00

Description

Technical Description

This vulnerability is only present when the magic_quotes_gpc PHP option is 'off'.

References:

Vendor URL: http://siteatschool.org ISS X-Force ID: 39417 Generic Exploit URL: http://www.milw0rm.com/exploits/4832 CVE-2008-0129 Bugtraq ID: 27120