CVE-2013-5120
PHPFox up to version 3.6.0 (build4) is affected by an SQL injection in the search[gender] parameter passed to user/browse/view_. The root cause is unsanitized input leading to arbitrary SQL execution. This affects remote attackers with network access; the vulnerability can enable partial to full ...