SQL injection vulnerability in profile_comments.php in SocialEngine (SE) 2.7 and earlier allows remote attackers to execute arbitrary SQL commands via the comment_secure parameter.
CPE | Name | Operator | Version |
---|---|---|---|
socialengine | eq | 2.0 bta-online | |
socialengine | eq | 2.4 se | |
socialengine | eq | 1.4 | |
socialengine | eq | 1.6 | |
socialengine | eq | 1.0 | |
socialengine | eq | 2.1 | |
socialengine | eq | 1.7 | |
socialengine | eq | 1.1 | |
socialengine | le | 2.7 | |
socialengine | eq | 2.0 |