PHP Gift Registry 1.5.5 - SQL Injection

Author: G13
type: webapps
platform: php
port: 
date_added: 2012-02-25 
date_updated: 2012-03-16 
verified: 0 
codes: OSVDB-79612;CVE-2012-2236 
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.comphpgiftreg-1.5.5.tar.gz

# Exploit Title: PHP Gift Registry 1.5.5 SQL Injection
# Date: 02/22/12
# Author: G13
# Software Link: https://sourceforge.net/projects/phpgiftreg/
# Version: 1.5.5
# Category: webapps (php)
#

##### Vulnerability #####

The userid parameter in the users.php file is vulnerable to SQL
Injection.

A user must be signed in to exploit this.

##### Exploit #####

http://localhost/phpgiftreg/users.php?action=edit&userid=[SQLi]