Multiple SQL injection vulnerabilities in MyPHP Forum 3.0 and earlier allow remote attackers to execute arbitrary SQL commands via the searchtext parameter to search.php, and unspecified other vectors.
Software | From | Fixed in |
---|---|---|
myphp_forum / myphp_forum | - | 3.0.x |