Vanilla Forums Multiple SQL Injection Vulnerabilities

Vanilla Forums is prone to multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input before using in an SQL query.

Exploiting these issues allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

Vanilla Forums 2.0.18.4 and prior versions are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus