Multiple SQL injection vulnerabilities in PHP-Fusion prior to 6.00.110 allow remote malicious users to execute arbitrary SQL commands via (1) the activate parameter in register.php and (2) the cat_id parameter in faq.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
php fusion php fusion 6.00.105 |
||
php fusion php fusion 6.00.106 |
||
php fusion php fusion 6.00.100 |
||
php fusion php fusion 6.00.107 |
||
php fusion php fusion 6.00.108 |
||
php fusion php fusion 6.00.101 |
||
php fusion php fusion 6.00.102 |
||
php fusion php fusion 6.00.109 |
||
php fusion php fusion 6.00.103 |
||
php fusion php fusion 6.00.104 |