Please view the original advisory here. The “Lyrics Script” suffers from various SQL Injection and Cross-Site Scripting vulnerabilities. >> #1 SQL Injection target/search_results.php?search=Search&k=[SQL Injection] target/browse_artist.php?letter=[SQL Injection] target/browse_song.php?letter=[SQL Injection] >> #2 Cross-Site Scripting target/search_results.php?search=Search&k=[XSS]
Author: valentin
Please view the original advisory here.
The “Lyrics Script” suffers from various SQL Injection and Cross-Site Scripting vulnerabilities.
>> #1 SQL Injection
target/search_results.php?search=Search&k=[SQL Injection]
target/browse_artist.php?letter=[SQL Injection]
target/browse_song.php?letter=[SQL Injection]
>> #2 Cross-Site Scripting
target/search_results.php?search=Search&k=[XSS]
Comments on this entry (no comments)
Did you like this post? You can share your opinion with us! Simply click here.