source: https://www.securityfocus.com/bid/22281/info
AdMentor is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query.
A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the underlying database implementation.
AdMentor Script Remote SQL injection Exploit =============================================================================================== [Script Name: AdMentor admin SQL injection
[Coded by : Cr@zy_King
[Author : Cr@zy_King
[Contact : Crazy_King@Eno7.org
[Dork : inurl:"admentor/admin"
[Dork Ex. : http://www.google.com.tr/search?hl=tr&q=inurl%3A%22admentor%2Fadmin%22&btnG=Google%27da+Ara&meta=
[S.Page : http://www.aspcode.net/products/admentor
[Thanks : Erne & ApAci & Eno7 & Uyuss & Liz0zim & Thehacker & Xoron & Ajann ===============================================================================================