Facebook SmarterMind - SQL Injection Vulnerability

2011-08-22T00:00:00
ID VULNERLAB:44
Type vulnerlab
Reporter Vulnerability Research Laboratory - Benjamin Kunz Mejri (Rem0ve)
Modified 2011-08-22T00:00:00

Description

A SQL Injection vulnerability is detected on smartermind facebook application (apps.facebook). The vulnerability allows an attacker (remote) to inject/execute own sql statements on the affected fb application dbms.