SQL injection vulnerability in index.php in DataLife Engine 4.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via double-encoded values in the user parameter in a userinfo subaction.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
softnews media group datalife engine |