Multiple SQL injection vulnerabilities in eLineStudio Site Composer (ESC) 2.6 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) id parameter to ansFAQ.asp and the (2) template_id parameter to preview.asp.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
elinestudio site composer |