Description - SQL Injection Vulnerability in Vegas Forum

SQL Injection found in Vegas Forum script.

Exploit
Available
Solution
Not available - check vendor's website

Vulnerable script: forumlib.php

Variable $postid isn't properly sanitized. This can be used to make any SQL query by injecting arbitrary SQL code.

Order Source Code Analysis

Protect against hacking by PHP code analysis of a site made by our team.The task will be done by specialists in web application security.

Advisories by vuln type