Multiple SQL injection vulnerabilities in login.php in HazelPress Lite 0.0.4 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) Username and (2) password fields.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hazelpress hazelpress 0.0.4 |