SQL injection vulnerability in phpMyFAQ 1.4 and 1.5 allows remote malicious users to add FAQ records to the database via the username field in forum messages.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpmyfaq phpmyfaq 1.4_alpha1 |
||
phpmyfaq phpmyfaq 1.4_alpha2 |
||
phpmyfaq phpmyfaq 1.4a |
||
phpmyfaq phpmyfaq 1.5 |
||
phpmyfaq phpmyfaq 1.4 |