SQL injection vulnerability in forum/include/error/autherror.cfm in FuseTalk allows remote malicious users to execute arbitrary SQL commands via the errorcode parameter. NOTE: a patch may have been released privately between April and June 2007. NOTE: this issue may overlap CVE-2007-3273.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fusetalk fusetalk 2.0 |