SQL injection vulnerability in wbsearch.aspx in uniForum 4 and previous versions allows remote malicious users to execute arbitrary SQL commands via the "by User" field (aka the TXbyuser parameter).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
uniforum uniforum |