Multiple SQL injection vulnerabilities in PHPKit 1.6.1 allow remote malicious users to execute arbitrary SQL commands via the (1) letter parameter to login/member.php or (2) im_receiver parameter to login/imcenter.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpkit phpkit 1.6.1 |