Security Advisory

CVE-2015-1364

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-01-27 17:00:00

Last updated 2024-09-17 00:26:10

Assigner mitre

State PUBLISHED

Description

SQL injection vulnerability in the getProfile function in system/profile.functions.php in Free Reprintables ArticleFR 3.0.5 allows remote attackers to execute arbitrary SQL commands via the username parameter to register/.

← Browse all CVEs View on cve.org ↗