Multiple SQL injection vulnerabilities in Pre ADS Portal 2.0 and previous versions, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the (1) cid parameter to showcategory.php and the (2) id parameter to software-description.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
preprojects pre ads portal |