SQL injection vulnerability in mod/PM/reply.php in Open Tibia Server CMS (OTSCMS) 2.1.5 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter to priv.php.
CPE | Name | Operator | Version |
---|---|---|---|
open_tibia_server_cms | eq | 2.1.3 | |
open_tibia_server_cms | eq | 2.1.5 | |
open_tibia_server_cms | eq | 2.0 | |
open_tibia_server_cms | eq | 2.1.4 |