CVE-2010-1538

Description

SQL injection vulnerability in print_raincheck.php in phpRAINCHECK 1.0.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.

Affected products

• bluestrikeweb / phpraincheck1.0.1

References

• EXPLOIThttp://www.exploit-db.com/exploits/11586
• EXPLOIThttp://packetstormsecurity.org/1002-exploits/phpraincheck-sql.txt
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/56578
• MISChttp://www.securityfocus.com/bid/38521