WebLeague is a PHP-based web application. The application is exposed to an SQL injection issue because it fails to properly sanitize user-supplied input to the "name" parameter of the "profile.php" script before using it in an SQL query. WebLeague version 2.2.0 is affected.
Ref: http://www.securityfocus.com/bid/43558
10.40.38 - CVE: CVE-2009-4560
Platform: Web Application - SQL Injection
Ref: http://www.securityfocus.com/bid/43558
10.40.38 - CVE: CVE-2009-4560
Platform: Web Application - SQL Injection
0 comments:
Post a Comment