SQL injection vulnerability in admin/index.php in phpList prior to 2.10.19 allows remote administrators to execute arbitrary SQL commands via the delete parameter to the editattributes page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
phplist phplist 2.10.12 |
||
phplist phplist 2.10.11 |
||
phplist phplist 2.10.3 |
||
phplist phplist 2.10.2 |
||
phplist phplist 2.6.5 |
||
phplist phplist |
||
phplist phplist 2.10.10 |
||
phplist phplist 2.10.9 |
||
phplist phplist 2.10.1 |
||
phplist phplist 2.8.12 |
||
phplist phplist 2.10.15 |
||
phplist phplist 2.10.14 |
||
phplist phplist 2.10.13 |
||
phplist phplist 2.10.5 |
||
phplist phplist 2.10.4 |
||
phplist phplist 2.7.2 |
||
phplist phplist 2.7.1 |
||
phplist phplist 2.10.17 |
||
phplist phplist 2.10.16 |
||
phplist phplist 2.10.8 |
||
phplist phplist 2.10.7 |
||
phplist phplist 2.8.7 |
||
phplist phplist 2.8.2 |