SQL injection vulnerability in pass_done.php for PY-Membres 4.2 and earlier allows remote attackers to execute arbitrary SQL queries via the email parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Py-membres | Py-membres | 4.0 (including) | 4.0 (including) |
Py-membres | Py-membres | 4.1 (including) | 4.1 (including) |
Py-membres | Py-membres | 4.2 (including) | 4.2 (including) |