SQL Injection Vulnerability in WSN Guest 1.24: Remote Code Execution via wsnuser Cookie

CVE-2011-1060 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

SQL injection vulnerability in the member function in classes/member.php in WSN Guest 1.24 allows remote attackers to execute arbitrary SQL commands via the wsnuser cookie to index.php.

Learn more about our User Device Pen Test.