Ridder Roeland : Security Vulnerabilities, CVEs, CVSS score >= 2
Multiple SQL injection vulnerabilities in show.php in BirthSys 3.1 allow remote attackers to execute arbitrary SQL commands via the $month variable. NOTE: a vector regarding the $date parameter and data.php (date.php) was originally reported, but this appears to be in error.
Max CVSS
7.5
EPSS Score
0.85%
Published
2006-02-19
Updated
2017-07-20
1 vulnerabilities found