e107 1.0.2 - SQL Injection (via Cross-Site Request Forgery)
e107 1.0.2 - SQL Injection via Cross-Site Request Forgery Exploit Title: e107 v1.0.2 Administrator CSRF Resulting in SQL Injection Google Dork: intext:"This site is powered by e107" Date: 01/01/13 Exploit Author: Joshua Reynolds Vendor Homepage: http://e107.org Software Link:...