SQL injection vulnerability in index.php in @lex Guestbook 4.0.2 and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the lang parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
alexphpteam alex guestbook 3.13 |
||
alexphpteam alex guestbook 4.0.1 |
||
alexphpteam alex guestbook 3.12 |
||
alexphpteam alex guestbook 4.0.2 |