Description - SQL Injection Vulnerability in CyBoards PHP Lite
SQL Injection found in CyBoards PHP Lite script.
- Exploit
- Available
- Solution
- Not available - check vendor's website
Vulnerable script: post.php
Variable $parent isn't properly sanitized before being used in the SQL query. This can be used to make any SQL query by injecting arbitrary SQL code.
Condition: magic_quotes_gpc = off
Order Source Code Testing
Check your website or web application by source code analysis of your website made by Aliaksandr Hartsuyeu.The order will be done by experts in web security.