Description
SQL injection vulnerability in gotourl.php in PozScripts Classified Auctions Script allows remote attackers to execute arbitrary SQL commands via the id parameter.
Exploits
68392008-10-26webappsPHP
PozScripts Classified Auctions - 'gotourl.php?id' SQL Injection
By Hussin X
References
cve@mitre.org
http://secunia.com/advisories/32373cve@mitre.org
http://securityreason.com/securityalert/4521cve@mitre.org
http://www.securityfocus.com/bid/31925cve@mitre.org
http://www.vupen.com/english/advisories/2008/2923cve@mitre.org
https://www.exploit-db.com/exploits/6839af854a3a-2127-422b-91ae-364da2661108
http://secunia.com/advisories/32373af854a3a-2127-422b-91ae-364da2661108
http://securityreason.com/securityalert/4521af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/31925af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2008/2923af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/46112af854a3a-2127-422b-91ae-364da2661108
https://www.exploit-db.com/exploits/6839