Widget Press : Security vulnerabilities, CVEs

Copy

CVE-2005-4020

SQL injection vulnerability in create.php in Widget Imprint 1.0.26 and earlier allows remote attackers to execute arbitrary SQL commands via the product_id parameter.

Max CVSS

7.5

EPSS Score

0.33%

Published

2005-12-05

Updated

2011-03-08

CVE-2005-4016

SQL injection vulnerability in Widget Property 1.1.19 allows remote attackers to execute arbitrary SQL commands via the (1) property_id, (2) zip_code, (3) property_type_id, (4) price, and (5) city_id parameters to property.php.

Max CVSS

7.5

EPSS Score

11.10%

Published

2005-12-05

Updated

2011-03-08

2 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!