Multiple SQL injection vulnerabilities in Phorum 5.0.11 and earlier allow remote attackers to modify SQL statements via (1) the query string in read.php or (2) unknown vectors in file.php.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Phorum | Phorum | 5.0.11 (including) | 5.0.11 (including) |