Worms-league » Webleague : Security Vulnerabilities, CVEs,
Multiple SQL injection vulnerabilities in Admin/index.php in WebLeague 2.2.0, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.
Max CVSS
6.8
EPSS Score
0.11%
Published
2010-01-04
Updated
2017-09-19
SQL injection vulnerability in profile.php in WebLeague 2.2.0 allows remote attackers to execute arbitrary SQL commands via the name parameter.
Max CVSS
7.5
EPSS Score
0.11%
Published
2010-01-04
Updated
2017-09-19
2 vulnerabilities found