SQL injection vulnerability in modules/adresses/viewcat.php in bcoos 1.0.13, and possibly earlier, allows remote authenticated users with Addresses module permissions to execute arbitrary SQL commands via the cid parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bcoos bcoos 1.0.11 |
||
bcoos bcoos 1.0.10 |
||
bcoos bcoos 1.0.9 |
||
bcoos bcoos |
||
bcoos bcoos 1.0.12 |