SQL injection vulnerability in message.php in VBZooM 1.11 and previous versions allows remote malicious users to execute arbitrary SQL commands via the UserID parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vbzoom vbzoom 1.00 |
||
vbzoom vbzoom 1.01 |
||
vbzoom vbzoom 1.11 |