vendor:
Sticker
by:
Zenith
8.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name: Sticker
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009
2Capsule Sticker Remote SQL Injection Vulnerability
A vulnerability exists in 2Capsule Sticker, which can be exploited by malicious people to conduct SQL injection attacks. Input passed via the 'id' parameter to 'sticker.php' isn't properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. Successful exploitation may allow execution of arbitrary SQL commands.
Mitigation:
Input validation should be used to prevent SQL injection attacks.
