SQL injection vulnerability in kommentare.php in Creative Files 1.2 allows remote attackers to execute arbitrary SQL commands via the dlid parameter.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Creative_files | Thecreativeheads.de | 1.2 (including) | 1.2 (including) |