bl4ckw0rm

1 exploit Active since May 2013
CVE-2013-3527 EXPLOITDB text WORKING POC
Vanilla Forums < 2.0.18.8 - SQL Injection via Form/Email Parameter
Multiple SQL injection vulnerabilities in Vanilla Forums before 2.0.18.8 allow remote attackers to execute arbitrary SQL commands via the parameter name in the Form/Email array to (1) entry/signin or (2) entry/passwordrequest.