OpenSNS SQL Injection Vulnerability
OpenSNS is a Comprehensive Social Software developed by Thinking Sky Technology. A SQL injection vulnerability exists in OpenSNS 6.1.0. An attacker can exploit this vulnerability by using the index.php?s=/ucenter/Config/ uid parameter to perform a SQL injection attack...