SQL injection vulnerability in merchants/index.php in Post Affiliate Pro 3 and 3.1.4 allows remote attackers to execute arbitrary SQL commands via the umprof_status parameter.
CPE | Name | Operator | Version |
---|---|---|---|
post_affiliate_pro | eq | 3.0 | |
post_affiliate_pro | eq | 3.1.4 |