CVE-2012-6526 | HackTesting

SQL injection vulnerability in show_code.php in Vastal I-Tech Freelance Zone allows remote attackers to execute arbitrary SQL commands via the code_id parameter.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/72455

http://packetstormsecurity.org/files/108756/vastalfreelance-sql.txt

http://www.securityfocus.com/bid/51533