SQL injection vulnerability in sessions.inc in PHP Base Library (PHPLib) prior to 7.4a allows remote malicious users to execute arbitrary SQL commands via the id variable, which is set by a client through a query string or a cookie.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phplib team phplib 7.4 |
||
phplib team phplib 7.4_pre2 |