Multiple SQL injection vulnerabilities in Wallpaper Website (Wallpaper Complete Website) 1.0.09 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) login or (2) password parameter to (a) process.php, or the (3) wallpaperid parameter to (b) dlwallpaper.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
wallpaper wallpaper complete website |