19 matches found
CVE-2019-11452
whatsns 4.0 allows index.php?admincategory/remove.html cid SQL injection...
EUVD-2020-9942
Malware in sbrugna...
CVE-2020-18013
SQL Injextion vulnerability exists in Whatsns 4.0 via the ip parameter in index.php?adminbanned/add.htm...
CVE-2019-11450
whatsns 4.0 allows index.php?question/ajaxadd.html title SQL injection...
CVE-2020-18013
SQL Injextion vulnerability exists in Whatsns 4.0 via the ip parameter in index.php?adminbanned/add.htm...
Sql injection
SQL Injextion vulnerability exists in Whatsns 4.0 via the ip parameter in index.php?adminbanned/add.htm...
CVE-2020-18013
CVE-2020-18013 describes an SQL injection in Whatsns 4.0, exploitable through the ip parameter in index.php?admin_banned/add.htm. Root cause: failure to filter special characters in the ip parameter. Impact stated in connected docs: ability to execute SQL statements. No remediation details are pr...
CVE-2020-18013
SQL Injextion vulnerability exists in Whatsns 4.0 via the ip parameter in index.php?adminbanned/add.htm...
CVE-2019-11452
whatsns 4.0 allows index.php?admincategory/remove.html cid SQL injection...
CVE-2019-11452
whatsns 4.0 allows index.php?admincategory/remove.html cid SQL injection...
CVE-2019-11450
whatsns 4.0 allows index.php?question/ajaxadd.html title SQL injection...
Sql injection
whatsns 4.0 allows index.php?inform/add.html qid SQL injection...
Sql injection
whatsns 4.0 allows index.php?admincategory/remove.html cid SQL injection...
CVE-2019-11451
whatsns 4.0 allows index.php?inform/add.html qid SQL injection...
Sql injection
whatsns 4.0 allows index.php?question/ajaxadd.html title SQL injection...
CVE-2019-11452
whatsns 4.0 allows index.php?admincategory/remove.html cid SQL injection...
CVE-2019-11451
whatsns 4.0 allows index.php?inform/add.html qid SQL injection...
CVE-2019-11450
CVE-2019-11450 affects Whatsns 4.0, where SQL injection is possible via the title parameter in index.php?question/ajaxadd.html. The issue is documented with CVSS v3.0 base score 9.8 (CRITICAL) and CVSS v2.0 base score 7.5 (HIGH). Affected component: the title field in the ajaxadd endpoint; root c...
CVE-2019-11450
whatsns 4.0 allows index.php?question/ajaxadd.html title SQL injection...