CVE-2004-2263 - Luteal Relocations

Description

SQL injection vulnerability in the valid function in fr_left.php in PlaySMS 0.7 and earlier allows remote attackers to modify SQL statements via the vc2 cookie.

Reference

http://www.securiteam.com/unixfocus/5UP0F2ADPS.html http://sourceforge.net/project/shownotes.php?release_id=254915 http://www.securityfocus.com/bid/10970 http://www.osvdb.org/8984 http://securitytracker.com/id?1010984 https://exchange.xforce.ibmcloud.com/vulnerabilities/17031