Lyrics Script SQL Injection and Cross-Site Scripting Vulnerabilities
Please view the original advisory here.
The “Lyrics Script” suffers from various SQL Injection and Cross-Site Scripting vulnerabilities.
>> #1 SQL Injection
target/search_results.php?search=Search&k=[SQL Injection]
target/browse_artist.php?letter=[SQL Injection]
target/browse_song.php?letter=[SQL Injection]
>> #2 Cross-Site Scripting
target/search_results.php?search=Search&k=[XSS]
June 14th, 2010 in
SQL Injection, XSS | tags: advisory, exploit, html code injection, Lyrics Script, Security, sql injection, vulnerabilities, XSS
