SQL injection vulnerability in search.php in My Little Forum 1.5 and 1.6 beta allows remote attackers to execute arbitrary SQL commands via the phrase field.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| My_little_forum | My_little_homepage | 1.3 (including) | 1.3 (including) |
| My_little_forum | My_little_homepage | 1.5 (including) | 1.5 (including) |
References
- http://marc.info/?l=bugtraq\u0026m=112741430006983\u0026w=2
- http://rgod.altervista.org/mylittle15_16b.html
- http://secunia.com/advisories/16913/
- http://www.securityfocus.com/bid/14908
- http://marc.info/?l=bugtraq\u0026m=112741430006983\u0026w=2
- http://rgod.altervista.org/mylittle15_16b.html
- http://secunia.com/advisories/16913/
- http://www.securityfocus.com/bid/14908