Multiple SQL injection vulnerabilities in VBZooM 1.11 allow remote malicious users to execute arbitrary SQL commands via the (1) sobjectID or (2) MAINID parameters to (a) show.php or (3) MainID parameter to (b) subject.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vbzoom vbzoom 1.11 |