The Everything Development Company » The Everything Development Engine : Security Vulnerabilities, CVEs,
The Everything Development Engine in The Everything Development System Pre-1.0 and earlier stores passwords in cleartext in a database, which makes it easier for context-dependent attackers to obtain access to user accounts.
Max CVSS
5.0
EPSS Score
0.30%
Published
2008-02-12
Updated
2018-10-15
SQL injection vulnerability in cms/index.pl in The Everything Development Engine in The Everything Development System Pre-1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the node_id parameter.
Max CVSS
7.5
EPSS Score
0.15%
Published
2008-02-12
Updated
2018-10-15
2 vulnerabilities found