SQL injection vulnerability in index.php in Invision Power Top Site List 1.1 RC 2 and previous versions allows remote malicious users to execute arbitrary SQL via the id parameter of the comments action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
invision power services invision power top site list 1.1_rc2 |
||
invision power services invision power top site list 1.0 |
||
invision power services invision power top site list 1.1 |