Description - SQL Injection Vulnerability in BirthSys

SQL Injection found in BirthSys script.

Exploit
Available
Solution
Not available - check vendor's website

Vulnerable script: show.php

Variables $month $date are not properly sanitized. This can be used to make any SQL query by injecting arbitrary SQL code.

Order Source Code Testing made by eVuln team

Defend against attacks by source code analysis of your website made by eVuln team.The order will be done by experts in web security.

Advisories by vuln type