3 matches found
Sql injection
SQL injection vulnerability in memberstats.php in YourOwnBux 3.1 and 3.2 beta, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the user parameter...