SQL injection vulnerability in iWebNegar allows remote attackers to execute arbitrary SQL commands via (1) the string parameter for index.php, (2) comments.php, or (3) the administrator login page.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Iwebnegar | Iwebnegar | * | * |