Multiple SQL injection vulnerabilities in phpCoin 1.2.2 allow remote malicious users to execute arbitrary SQL commands via the (1) search parameter to index.php, (2) phpcoinsessid parameter to login.php, (3) id, (4) dtopic_id, or (5) dcat_id to mod.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
coinsoft technologies phpcoin 1.2 |
||
coinsoft technologies phpcoin 1.2.1 |
||
coinsoft technologies phpcoin 1.2.1b |