Multiple SQL injection vulnerabilities in FretsWeb 1.2 allow remote malicious users to execute arbitrary SQL commands via the (1) name parameter to player.php and the (2) hash parameter to song.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
fretsweb project fretsweb 1.2 |