SQL injection vulnerability in viewmsg.asp in LocazoList Classifieds 1.05e allows remote attackers to execute arbitrary SQL commands via the msgid parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Locazolist_classifieds | Locazo | 1.04d | 1.04d |
Locazolist_classifieds | Locazo | 1.05e | 1.05e |
Locazolist_classifieds | Locazo | 1.03c | 1.03c |