[Full-disclosure] SQL Injection vulnerability in CMS WebManager-Pro

Hello Full-Disclosure! I want to warn you about SQL Injection vulnerability in CMS WebManager-Pro. SQL Injection: http://site/index.php?content_id=-1%20or%20version()=4 Affected software: Vulnerable are CMS WebManager-Pro v.7.4.3 (version from FGS_Studio) and previous versions. Original versi

Re: [Full-disclosure] SQL Injection vulnerability in CMS WebManager-Pro

-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 On Wed, 11 Aug 2010 21:04:51 +0300 "MustLive" wrote: > Hello Full-Disclosure! > > I want to warn you about SQL Injection vulnerability in CMS > WebManager-Pro. > > SQL Injection: > > http://site/index.php?content_id=-1%20or%20version()=4 > > Affe

Re: [Full-disclosure] SQL Injection vulnerability in CMS WebManager-Pro

write all important information concerning every particular hole in every particular web application. Best wishes & regards, MustLive Administrator of Websecurity web site http://websecurity.com.ua ----- Original Message - From: "Henri Salo" To: "MustLive" Cc: Sent: Th