CVE-2004-2263

Name of the Vulnerable Software and Affected Versions: PlaySMS versions 0.7 and earlier

Description: The issue allows remote attackers to modify SQL statements. This is achieved by exploiting a SQL injection vulnerability in the valid function in fr left.php. The vulnerability can be triggered via the vc2 cookie.

Recommendations: For PlaySMS versions 0.7 and earlier, consider updating to a version later than 0.7 to resolve the issue. As a temporary workaround, restrict access to the fr left.php file to minimize the risk of exploitation. Avoid using the vc2 cookie in the affected API endpoint until the issue is resolved.