Description - SQL Injection Vulnerability in VEGO Web Forum
SQL Injection found in VEGO Web Forum script.
- Exploit
- Available
- Solution
- Not available - check VEGO website
Vulnerable scripts:
- php/functions.php
- php/functions_update.php
- php/functions_display.php
Variable theme_id isn't properly sanitized before being used in a SQL query. This can be used to make any SQL query by injecting arbitrary SQL code.
Administrator's authentication is threatened.
Order Source Code Analysis
Check your website or web application by source code analysis of a site or web application done by our team.The order will be done by experts in web security.