SQL injection vulnerability in war.php in Virtual War (Vwar) 1.5.0 and previous versions allows remote malicious users to execute arbitrary SQL commands via the page parameter. NOTE: other vectors are covered by CVE-2006-3139.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vwar virtual war 1.5.0 |