SQL injection vulnerability in settings.asp in Zixforum 1.12 allows remote malicious users to execute arbitrary SQL commands via the layid parameter to (1) login.asp and (2) main.asp.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
john andersson zixforum 1.12 |