OpenDocMan 'ajax_udf.php' Multiple SQL Injection Vulnerabilities

OpenDocMan is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data.

An attacker can exploit these issues by manipulating the SQL query logic to carry out unauthorized actions on the underlying database.

OpenDocMan 1.2.7.1 is vulnerable; other versions may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus