SQL injection vulnerability in edCss.php in PowerPhlogger 2.2.5 and previous versions allows remote authenticated users to execute arbitrary SQL commands via the css_str parameter in an edit action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
powerphlogger powerphlogger 2.0.9 |
||
powerphlogger powerphlogger 2.2.1 |
||
powerphlogger powerphlogger 2.2.2a |
||
powerphlogger powerphlogger |