From: adexior@gmail.com
To: bugtraq@securityfocus.com
Subject: MDPro 1.0.76 - Multiple Remote Vulnerabilities

_____SQL Injection:

index.php?module=News&startrow='[sql injection]


_____Show path to script:

user.php?op=userinfo&uname='