SQL injection vulnerability in plugin.php in the Crazy Star plugin 2.0 for Discuz! allows remote authenticated users to execute arbitrary SQL commands via the fmid parameter in a view action.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
comsenz crazy_star_plugin 2.0 |