source: wwwsecurityfocuscom/bid/15568/info
eFiction is prone to SQL injection, remote file upload, and cross site scripting vulnerabilities
These vulnerabilities may allow an attacker to view and modify sensitive information, gain unauthorized access, modify and corrupt the underlying database application, and obtain a victim's au ...