The vulnerability in the `ecard_send.php` script of the Admidio membership and access control application allows a perpetrator to execute arbitrary code and gain access to read, modify, or delete data.
The vulnerability in the ecardsend.php script /admprogram/modules/ecards/ecardsend.php of the Admidio membership and access control application relates to the improper elimination of special elements used in SQL queries when processing the ecardrecipients parameter. Exploiting this vulnerability...