9 lines
No EOL
409 B
Text
9 lines
No EOL
409 B
Text
source: http://www.securityfocus.com/bid/8847/info
|
|
|
|
GoldLink is prone to SQL injection attacks. This is due to insufficient validation of values supplied via cookies. As a result, it may be possible to manipulate SQL queries, potentially resulting in information disclosure, bulletin board compromise or other consequences.
|
|
|
|
vadmin_login = ' OR Login LIKE '%
|
|
|
|
and
|
|
|
|
vadmin_pass = ' OR Password LIKE '% |