Multiple SQL injection vulnerabilities in phpWebsite 0.83 and previous versions allow remote malicious users to execute arbitrary SQL commands via the sid parameter to (1) friend.php or (2) article.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phpwebsite phpwebsite 0.8.3 |
||
phpwebsite phpwebsite 0.7.3 |
||
phpwebsite phpwebsite 0.8.2 |