Multiple SQL injection vulnerabilities in AlstraSoft Affiliate Network Pro 7.2 allow remote malicious users to bypass authentication and execute arbitrary SQL commands via the (1) username or (2) password to admin/admin_validate_login, or the (3) login, (4) password, and (5) flag parameters to login_validate.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
alstrasoft affiliate network pro 7.2 |