SQL injection vulnerability in inc/inc_statistics.php in MemHT Portal 3.9.0 and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via a stats_res cookie to index.php.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
memht memht portal 3.7.0 |
||
memht memht portal 3.6.5 |
||
memht memht portal 3.3 |
||
memht memht portal 3.2 |
||
memht memht portal 2.5 |
||
memht memht portal 2.0 |
||
memht memht portal 3.8.5 |
||
memht memht portal 3.8.1 |
||
memht memht portal 3.4.5 |
||
memht memht portal 3.4 |
||
memht memht portal 3.0 |
||
memht memht portal 2.9 |
||
memht memht portal 1.5 |
||
memht memht portal |
||
memht memht portal 3.6.0 |
||
memht memht portal 3.5.0 |
||
memht memht portal 3.1 |
||
memht memht portal 3.8.0 |
||
memht memht portal 3.7.5 |
||
memht memht portal 1.0 |
Vulmon