Sql injection

2007-10-2922:46:00

PRIOn knowledge base

www.prio-n.com

9.3 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

70.9%

JSON

Multiple SQL injection vulnerabilities in CodeWidgets.com Online Event Registration Template allow remote attackers to execute arbitrary SQL commands via the (1) Email Address and (2) Password fields in (a) login.asp and (b) admin_login.asp.

References

secunia.com/advisories/27375

securityreason.com/securityalert/3313

www.osvdb.org/38167

www.osvdb.org/38168

www.securityfocus.com/archive/1/482730/100/0/threaded

www.securityfocus.com/bid/26192

exchange.xforce.ibmcloud.com/vulnerabilities/37424