============ { Ariko-Security - Advisory #5/2/2010 } =============
SQL injection vulnerability in WebAdministrator Lite CMS
Vendor's Description of Software:
Dork:
Application Info:
Vulnerability Info:
Fix:
Time Table:
new version"…
Input passed via the "s" parameter to download.php is not properly
sanitised before being used in a SQL query.
Solution:
Vulnerability:
Credit:
Ariko-Security
Maciej Gojny
[email protected]
tel.: +48512946012 (Mo-Fr 10.00-20.00 CET)