Multiple SQL injection vulnerabilities in PHPlist 2.10.1 and previous versions allow authenticated remote attackers with administrator privileges to execute arbitrary SQL commands via the id parameter in the (1) editattributes or (2) admin page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tincan phplist |