Class-1 Forum SQL Injection Vulnerability

Class-1 Forum SQL Injection Vulnerability

Class-1 Forum is prone to an SQL injection vulnerability.

This issue allows a remote attacker to pass malicious input to database queries leading to a file upload vulnerability.

If an attacker is able to upload and execute a malicious script to the server, this issue can lead to unauthorized remote access. Other attacks are possible as well.

Class-1 Forum 0.24.4 is reportedly vulnerable to this issue. Other attacks are possible as well.