Multiple SQL injection vulnerabilities in war.php in Virtual War (VWar) 1.5.0 R14 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) s, (2) showgame, (3) sortorder, and (4) sortby parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vwar virtual war 1.5.0_r10 |
||
vwar virtual war 1.5.0_r11 |
||
vwar virtual war 1.5.0_r12 |
||
vwar virtual war 1.5.0_r7 |
||
vwar virtual war 1.5.0_r8 |
||
vwar virtual war 1.5.0_r3 |
||
vwar virtual war 1.5.0_r4 |
||
vwar virtual war 1.5.0_r13 |
||
vwar virtual war 1.5.0_r2 |
||
vwar virtual war 1.5.0_r9 |
||
vwar virtual war |
||
vwar virtual war 1.5.0_r1 |
||
vwar virtual war 1.5.0_r5 |
||
vwar virtual war 1.5.0_r6 |