SQL injection vulnerability in CS-Forum prior to 0.82 allows remote malicious users to execute arbitrary SQL commands via the (1) id and (2) debut parameters in (a) read.php, and the (3) search and (4) debut parameters in (b) index.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
comscripts cs-forum |