2 matches found
CVE-2014-9347
CVE-2014-9347 documents a SQL injection in phpMyRecipes 1.2.2, specifically in dosearch.php via the words_exact parameter. The vulnerability enables remote attackers to execute arbitrary SQL commands, with the impact described as partial confidentiality, integrity, and availability. Affected comp...
CVE-2014-9440
The CVE-2014-9440 issue affects phpMyRecipes 1.2.2, where a SQL injection vulnerability exists in browse.php via the category parameter. The root cause is inadequate input validation/filtering of the category parameter, allowing remote attackers to append arbitrary SQL commands. Consequences desc...