Lucene search

Wsn Guest Security Vulnerabilities - May

cve

CVE-2009-0704

SQL injection vulnerability in search.php in WSN Guest 1.23 allows remote attackers to execute arbitrary SQL commands via the search parameter in an advanced action.

8.7AI Score

0.001EPSS

2009-02-23 03:30 PM

cve

CVE-2010-0672

SQL injection vulnerability in index.php in WSN Guest 1.02 allows remote attackers to execute arbitrary SQL commands via the orderlinks parameter.

8.7AI Score

0.001EPSS

2010-02-22 08:30 PM

cve

CVE-2011-1060

SQL injection vulnerability in the member function in classes/member.php in WSN Guest 1.24 allows remote attackers to execute arbitrary SQL commands via the wsnuser cookie to index.php.

8.7AI Score

0.001EPSS

2011-02-23 01:00 AM

cve

CVE-2011-1061

SQL injection vulnerability in memberlist.php in WSN Guest 1.24 allows remote attackers to execute arbitrary SQL commands via the time parameter.

8.7AI Score

0.003EPSS

2011-02-23 01:00 AM