SQL injection vulnerability in PHP-Fusion 6.00.200 up to and including 6.00.300 allows remote malicious users to execute arbitrary SQL commands via the ratings parameter in multiple scripts, such as ratings_include.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
php fusion php fusion 6.00.200 |
||
php fusion php fusion 6.00.206 |
||
php fusion php fusion 6.00.207 |
||
php fusion php fusion 6.00.300 |