Description - SQL Injection Vulnerability in Teca Diary PE

SQL Injection found in Teca Diary PE script.

Exploit
Available
Solution
Not available - check vendor's website

Vulnerable script: functions.php

Variables $yy $mm $dd are not properly sanitized. This can be used to make any SQL query by injecting arbitrary SQL code.

Order Source Code Testing made by eVuln

Protect against hacking by source code testing of a site made by eVuln team.The order will be done by experts in website security.

Advisories by vuln type