Description - Authentication Bypass in Wordcircle
SQL Injection found in Wordcircle script.
- Exploit
- Available
- Solution
- Not available - check vendor's website
Vulnerable scripts: v_login.php
User-defined password isn't properly sanitized before being used in a SQL query. This can be used to log in as administrator without password.
Condition: magic_quotes_gpc: off
Order Source Code Audit made by eVuln team
Protect your website by source code review of your website or web application made by eVuln team.The order will be done by experts in web security.