Multiple SQL injection vulnerabilities in adminlogin.php in Baal Systems 3.8 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) username and (2) password parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
baalsystems baal systems |
||
baalsystems baal systems 3.7 |
||
baalsystems baal systems 3.6 |