Multiple SQL injection vulnerabilities in the admin area in couponPHP before 1.2.0 allow remote administrators to execute arbitrary SQL commands via the (1) iDisplayLength or (2) iDisplayStart parameter to (a) comments_paginate.php or (b) stores_paginate.php in admin/ajax/.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2015-01-13T15:00:00
Updated: 2024-08-06T14:02:38.178Z
Reserved: 2015-01-13T00:00:00
Link: CVE-2014-10034

No data.

Status : Deferred
Published: 2015-01-13T15:59:43.490
Modified: 2025-04-12T10:46:40.837
Link: CVE-2014-10034

No data.