Multiple SQL injection vulnerabilities in Vanilla Forums before 2.0.18.8 allow remote attackers to execute arbitrary SQL commands via the parameter name in the Form/Email array to (1) entry/signin or (2) entry/passwordrequest.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2013-05-10T21:00:00
Updated: 2017-08-28T12:57:01
Reserved: 2013-05-10T00:00:00
Link: CVE-2013-3527
JSON object: View
NVD Information
Status : Modified
Published: 2013-05-10T21:55:02.500
Modified: 2020-06-04T13:16:43.630
Link: CVE-2013-3527
JSON object: View
Redhat Information
No data.
CWE