2 matches found
CVE-2013-7375
SQL injection vulnerability in includes/classes/Authenticate.class.php in PHP-Fusion 7.02.01 through 7.02.05 allows remote attackers to execute arbitrary SQL commands via the user ID in a user cookie, a different vulnerability than CVE-2013-1803...
CVE-2013-7375
CVE-2013-7375 is an SQL injection in PHP-Fusion 7.02.01–7.02.05 via the user ID stored in a cookie, affecting Authenticate.class.php. It enables remote attackers to execute arbitrary SQL commands. This entry is separate from CVE-2013-1803 and is corroborated by multiple sources in the connected d...