SQL injection vulnerability in index.php in Mlffat 2.2 allows remote malicious users to execute arbitrary SQL commands via a member cookie in an account editprofile action, a different vector than CVE-2009-1731.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mlffat mlffat 2.2 |