SQL injection vulnerability in list.php in University of Queensland Library Fez 1.3 and 2.0 RC1 allows remote malicious users to execute arbitrary SQL commands via the parent_id parameter in a subject action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
university of queensland fez 2.0 |
||
university of queensland fez 1.3 |