CVE-2007-5704

2007-10-2922:00:00

mitre

www.cve.org

AI Score

8.5

Confidence

Low

EPSS

0.004

Percentile

74.3%

JSON

Multiple SQL injection vulnerabilities in CodeWidgets.com Online Event Registration Template allow remote attackers to execute arbitrary SQL commands via the (1) Email Address and (2) Password fields in (a) login.asp and (b) admin_login.asp.

References

secunia.com/advisories/27375

securityreason.com/securityalert/3313

www.osvdb.org/38167

www.osvdb.org/38168

www.securityfocus.com/archive/1/482730/100/0/threaded

www.securityfocus.com/bid/26192

exchange.xforce.ibmcloud.com/vulnerabilities/37424