Eliteladders : Security Vulnerabilities, CVEs,
An issue in Ladder v.0.0.1 thru v.0.0.21 allows a remote attacker to obtain sensitive information via a crafted request to the API.
Max CVSS
N/A
EPSS Score
0.08%
Published
2024-04-06
Updated
2024-04-08
SQL injection vulnerability in stats.php in Elite Gaming Ladders 3.0 allows remote attackers to execute arbitrary SQL commands via the account parameter.
Max CVSS
7.5
EPSS Score
0.13%
Published
2011-11-02
Updated
2017-08-29
SQL injection vulnerability in matchdb.php in Elite Gaming Ladders 3.5 and earlier allows remote attackers to execute arbitrary SQL commands via the match parameter.
Max CVSS
7.5
EPSS Score
0.06%
Published
2011-11-02
Updated
2017-08-29
SQL injection vulnerability in standings.php in Elite Gaming Ladders 3.5 allows remote attackers to execute arbitrary SQL commands via the ladder[id] parameter.
Max CVSS
7.5
EPSS Score
0.06%
Published
2011-11-02
Updated
2017-08-29
SQL injection vulnerability in ladders.php in Elite Gaming Ladders 3.2 allows remote attackers to execute arbitrary SQL commands via the platform parameter.
Max CVSS
7.5
EPSS Score
0.16%
Published
2009-09-23
Updated
2017-09-19
5 vulnerabilities found