SQL injection vulnerability in Skalfa SkaLinks 1.5 allows remote attackers to execute arbitrary SQL commands via the Admin name field to the default URI under admin/.
Max CVSS
7.5
EPSS Score
0.07%
Published
2009-02-10
Updated
2017-09-29
Cross-site request forgery (CSRF) vulnerability in admin/admin_account.php in Skalinks 1.5 and earlier allows remote attackers to add arbitrary privileged accounts as administrators via the admin_name, admin_password, admin_type, and Add_admin parameters.
Max CVSS
6.8
EPSS Score
0.26%
Published
2007-11-10
Updated
2018-10-15
2 vulnerabilities found