Multiple SQL injection vulnerabilities in the MySQL back-end in Advanced Website Creator (AWC) prior to 1.9.0 might allow remote malicious users to execute arbitrary SQL commands via unspecified parameters, related to use of mysql_escape_string instead of mysql_real_escape_string.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
advanced website creator advanced website creator 1.3 |
||
advanced website creator advanced website creator 1.4.1 |
||
advanced website creator advanced website creator 1.8.1 |
||
advanced website creator advanced website creator 0.1 |
||
advanced website creator advanced website creator 0.2 |
||
advanced website creator advanced website creator 1.4.2 |
||
advanced website creator advanced website creator 1.5.0 |
||
advanced website creator advanced website creator 1.1_beta_1 |
||
advanced website creator advanced website creator 1.2 |
||
advanced website creator advanced website creator 1.7.0 |
||
advanced website creator advanced website creator 1.8.0 |
||
advanced website creator advanced website creator 0.3 |
||
advanced website creator advanced website creator 1.0_beta_1 |
||
advanced website creator advanced website creator 1.6.0 |
||
advanced website creator advanced website creator 1.6.1 |
Vulmon