SQL injection vulnerability in login.php in miniBloggie 1.0 and previous versions, when gpc_magic_quotes is disabled, allows remote malicious users to execute arbitrary SQL commands and bypass authentication via the (1) username and (2) password parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mywebland minibloggie |