SQL injection vulnerability in the getAllbyArticle function in wfsfiles.php for WF-Sections (wfsections) 1.07 allows remote malicious users to execute arbitrary SQL commands via the articleid parameter to article.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wf-sections wf-sections 1.07 |