Multiple SQL injection vulnerabilities in admin/admin.php in Sphider 1.3.6 and previous versions, Sphider Pro, and Sphider-plus allow remote malicious users to execute arbitrary SQL commands via the (1) site_id or (2) url parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sphider sphider |
||
sphider sphider 1.3.2 |
||
sphider sphider 1.3.3 |
||
sphider sphider 1.3.4 |
||
sphider sphider 1.3.5 |