SQL injection vulnerability in index.php in iWare Professional 5.0.4, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the D parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Iware_professional | Iware | 5.0.4 (including) | 5.0.4 (including) |