vendor:
N/A
by:
Mr.SQL
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: N/A
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009
DIY Blind SQL Injection Exploit ( index_topic did )
This exploit is a DIY Blind SQL Injection Exploit which uses the index_topic.php did parameter to inject malicious SQL code into the vulnerable application. It is written in Perl and can be used to gain access to the database of the vulnerable application.
Mitigation:
Input validation and proper sanitization of user input should be implemented to prevent SQL injection attacks.