Closed wanan0red closed 1 year ago
Thank you for reporting the issue. Fix applied in 4234fd773c016775696e3bd8978e0627ebfd1415
Similar unsanitized input exists within ajax_load_more.php of same module
Lines 19-21 (Still need to learn Git, so bare with me)
Can't confirm. Just in the lines before is an authentication check.
SQL injection In modules/miniform/ajax_delete_message.php multiple post parameter combinations exist error injection
request packet
poc
Repair plan
add addslashes()