Multiple SQL injection vulnerabilities in index.php in Pixelpost 1-5rc1-2 and previous versions allow remote malicious users to execute arbitrary SQL commands, and leverage them to gain administrator privileges, via the (1) category or (2) archivedate parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
pixelpost pixelpost |