CVE-2010-5017 | HackTesting

SQL injection vulnerability in stats.php in Elite Gaming Ladders 3.0 allows remote attackers to execute arbitrary SQL commands via the account parameter.

References

http://www.vupen.com/english/advisories/2010/0012

http://secunia.com/advisories/36732

https://exchange.xforce.ibmcloud.com/vulnerabilities/55335

http://www.securityfocus.com/bid/40163

http://www.exploit-db.com/exploits/10978