SQL injection vulnerability in cn_users.php in CzarNews 1.20 and previous versions allows remote malicious users to execute arbitrary SQL commands via a recook cookie.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
czaries czarnews 1.12 |
||
czaries czarnews |
||
czaries czarnews 1.13 |
||
czaries czarnews 1.14 |