Multiple SQL injection vulnerabilities in DCP-Portal 6.1.1 and previous versions allow remote malicious users to execute arbitrary SQL commands via (1) the lcat, doc, or uid parameters to index.php, or (2) the mid or bid parameters to forums.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
codeworx technologies dcp-portal |