Praetorian503 Posted February 17, 2013 Report Posted February 17, 2013 Scripts Genie Gallery Personals script suffers from a remote SQL injection vulnerability.################################################################################## __ _ _ ____ / /___ _____ (_)_____________ ______(_)__ _____ / __ \_________ _ __ / / __ `/ __ \/ / ___/ ___/ __ `/ ___/ / _ \/ ___// / / / ___/ __ `// /_/ / /_/ / / / / (__ |__ ) /_/ / / / / __(__ )/ /_/ / / / /_/ / \____/\__,_/_/ /_/_/____/____/\__,_/_/ /_/\___/____(_)____/_/ \__, / /____/ ################################################################################## Gallery Personals Script SQL Injection VulnerabilitiesSoftware Page: http://scriptsgenie.com/Product Page: http://www.hotscripts.com/listing/gallery-personals/Script Demo: http://resalemembership.com/demos/pgallery/Author(Pentester): 3spi0nOn Social: Twitter.Com/eyyamgudeerGreetz: Grayhats Inc. and Janissaries Platform.##################################################################################[~] MySQL Injection on Demo Site (/gallery.php?L=)>>> http://server/demos/pgallery/gallery.php?L=2' (MySQLi Found)Source: PacketStorm Quote