Description - SQL Injection Vulnerability in AZNEWS
SQL Injection found in AZNEWS script.
- Exploit
- Available
- Solution
- Not available - check vendor's website
SQL Injection.
Vulnerable script: news.php
Parameter ID is not properly sanitized before being used in SQL query. This can be used to make any SQL query by injecting arbitrary SQL code.
Order Source Code Testing made by eVuln team
Protect a website by source code review of your site done by Aliaksandr Hartsuyeu.The task will be done by experts in web application security.