PHP-Fusion <= 6.1.5 Calendar_Panel Module Show_Event.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23225/info PHP-Fusion is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise th...

phpfusion2-sql.txt

!/usr/bin/perl -w PHP-Fusion 'CalendarPanel' Module showevent.PHP mmonth SQL Injection Exploit And PoC Type : SQL Injection Release Date : 2007-03-31 Product : http://php-fusion.co.uk/ Bug : http://localhost/script/modules/articles/print.php?id=x AND 1=1 or 1=0 PoC :...

PHP-Fusion 6.1.5 Mod Calendar_Panel - &#039;Show_Event.php&#039; SQL Injection

source: https://www.securityfocus.com/bid/23225/info PHP-Fusion is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify...

PHP-Fusion 6.1.5 Mod Calendar_Panel - Show_Event.php SQL Injection

PHP-Fusion 6.1.5 Mod CalendarPanel - ShowEvent.php SQL Injection source: https://www.securityfocus.com/bid/23225/info PHP-Fusion is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could all...