Description - SQL Injection Vulnerability in Ruperts News Script
SQL Injection found in Ruperts News Script script.
SQL Injection.
Vulnerable script: login.php
Parameter username is not properly sanitized before being used in SQL query. This can be used to bypass authentication or make any SQL query by injecting arbitrary SQL code.
Condition: magic_quotes_gpc = off
Order Source Code Testing made by eVuln
Protect a website or web application by source code review of a website made by our team.The task will be done by specialists in web security.