SQL injection vulnerability in protect.php in X-Scripts X-Protection 1.10, with magic_quotes_gpc disabled, allows remote malicious users to execute arbitrary SQL commands via the (1) username and (2) password parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
x-scripts x-statistics 1.10 |