Oxynews suffers from an SQL injection vulnerability.
6865651619fa0e07ac5b07977107719ec2d8b968d8238224f143c6a5fa82e4cf
Oxynews Sql Ýnjection
Website:http://www.oxynews.net/
Demo:http://www.scriptevi.com/files/demo/news/oxynews/
-------------------------------------------------------------------
Credit:R00t3RR0R
Website:www.biyosecurity.be / www.biyo.tk
mail: r00t3rr0r@gmail.com
-------------------------------------------------------------------
Bug:
http://victim.com/oxynews/index.php?oxynews_comment_id=[sql]
--------------------------------------------------------------------
Google:"News managed with OxyNews © 2002"
--------------------------------------------------------------------
Source:
http://www.blogcu.com/Liz0ziM/363710/
http://biyosecurity.be/bugs/oxynews.txt