Description
SQL injection vulnerability in paidbanner.php in LM Starmail Paidmail 2.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by int_main(); · textwebappsphp
https://www.exploit-db.com/exploits/9383
References (1)
Core 1
Core References
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
http://www.exploit-db.com/exploits/9383
Scores
EPSS
0.0063
EPSS Percentile
70.4%
Details
CWE
CWE-89
Status
published
Products (1)
script-shop24/lm_starmail_paidmail
2.0
Published
Aug 25, 2010
Tracked Since
Feb 18, 2026