SQL injection vulnerability in index.php in PwsPHP 1.2.3 allows remote attackers to execute arbitrary SQL commands via the id parameter, possibly in message.php in the espace_membre module. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Pwsphp | Pwsphp | 1.2.3 (including) | 1.2.3 (including) |