Description
SQL injection vulnerability in vs_search.php in Arantius Vice Stats before 1.0.1 allows remote attackers to execute arbitrary SQL commands via unknown vectors, a different issue than CVE-2006-2972.
Affected products
- arantius / vice_stats0.2_beta – 0.2_beta
- arantius / vice_stats0.3_beta – 0.3_beta
- arantius / vice_stats0.4.1_beta – 0.4.1_beta
- arantius / vice_stats0.4_beta – 0.4_beta
- arantius / vice_stats0.5_beta – 0.5_beta
- arantius / vice_stats1.0 – 1.0