Widget Press : Security Vulnerabilities, CVEs,
SQL injection vulnerability in create.php in Widget Imprint 1.0.26 and earlier allows remote attackers to execute arbitrary SQL commands via the product_id parameter.
Max CVSS
7.5
EPSS Score
0.33%
Published
2005-12-05
Updated
2011-03-08
SQL injection vulnerability in Widget Property 1.1.19 allows remote attackers to execute arbitrary SQL commands via the (1) property_id, (2) zip_code, (3) property_type_id, (4) price, and (5) city_id parameters to property.php.
Max CVSS
7.5
EPSS Score
11.10%
Published
2005-12-05
Updated
2011-03-08
2 vulnerabilities found