SQL injection vulnerability in the employees node (class.employee.inc) in Achievo 1.1.0 and previous versions and 1.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the atkselector parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
achievo achievo 1.1.0 |
||
achievo achievo 1.2.0 |