[VIM] 2FLY Gift Delivery System 'gameid' Parameter SQL Injection Vulnerability

George A. Theall theall at tenable.com
Thu Oct 21 20:28:13 CDT 2010

Rob, isn't the newly-created BID 44312 a dup of 36044? Both seem to  
correspond to an issue reported by Securitylab.ir in August 2009:


The only difference I see is that the newer entry truncates the PoC.

theall at tenablesecurity.com

More information about the VIM mailing list