Multiple SQL injection vulnerabilities in PHP Address Book 3.1.5 and previous versions allow remote malicious users to execute arbitrary SQL commands via the id parameter to (1) view.php and (2) edit.php. NOTE: it was later reported that 4.0.x is also affected.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
php-address book php-address book 3.1.2 |
||
php-address book php-address book 3.1.1 |
||
php-address book php-address book 2.1.1 |
||
php-address book php-address book 2.1 |
||
php-address book php-address book 2.0 |
||
php-address book php-address book 3.4.4 |
||
php-address book php-address book 3.4.3 |
||
php-address book php-address book |
||
php-address book php-address book 3.1.5 |
||
php-address book php-address book 2.6 |
||
php-address book php-address book 2.4 |
||
php-address book php-address book 3.4.8 |
||
php-address book php-address book 3.4.7 |
||
php-address book php-address book 3.4 |
||
php-address book php-address book 3.3.18 |
||
php-address book php-address book 3.1 |
||
php-address book php-address book 3.0 |
||
php-address book php-address book 1.2 |
||
php-address book php-address book 1.0 |
||
php-address book php-address book 3.4.2 |
||
php-address book php-address book 3.4.1 |
||
php-address book php-address book 3.1.4 |
||
php-address book php-address book 3.1.3 |
||
php-address book php-address book 2.3 |
||
php-address book php-address book 2.2 |
||
php-address book php-address book 3.4.6 |
||
php-address book php-address book 3.4.5 |
||
php-address book php-address book 3.3.17 |
||
php-address book php-address book 3.3.16 |
Vulmon