SQL injection vulnerability in phpCoin 1.2.1b and previous versions allows remote malicious users to execute arbitrary SQL commands via the (1) term/keywords field on the search page, (2) username or (3) e-mail field on the forgot password page, or (4) domain name on the ordering new package page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
coinsoft technologies phpcoin 1.2 |
||
coinsoft technologies phpcoin 1.2.1 |
||
coinsoft technologies phpcoin 1.2.1b |