Posted on

Duforum messageDetail.asp MSG_ID sql injection

A vulnerability was found in Duforum (the affected version is unknown). It has been rated as critical. Affected by this issue is an unknown function of the file messageDetail.asp. There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.