AV Arcade Free Edition (add_rating.php, id parameter) Blind SQL Injection

No description provided by source. Exploit Title: AV Arcade Free Edition Blind SQL Injection Date: 31/08/2012 Author: DaOne @LibyanCA Software Link: http://www.avscripts.net/avarcade/freearcadescript/ Google Dork: intext:Powered by AV Arcade Free Edition Exploit-DB Note: Must be logged in. Exploi...