VULHUB ™

Several problems in the handling of user-supplied input have been identified in Tunez. The issues present themselves due to a lack of sufficient sanitization performed on user-supplied data that is later included in SQL query strings. An attacker may supply data that is sufficient to influence SQL query logic; because of this the attacker may be able to perform attacks against the underlying database.

Several problems in the handling of user-supplied input have been identified in Tunez. The issues present themselves due to a lack of sufficient sanitization performed on user-supplied data that is later included in SQL query strings. An attacker may supply data that is sufficient to influence SQL query logic; because of this the attacker may be able to perform attacks against the underlying database.