20 Déc 2018
CVE-2018-1000867 - CVE Vulnerability
WeBid version up to current version 1.2.2 contains a SQL Injection vulnerability in All five yourauctions*.php scripts that can result in Database Read via Blind SQL Injection. This attack appear to be exploitable via HTTP Request. This vulnerability appears to have been fixed in after commit 256a5f9d3eafbc477dcf77c7682446cc4b449c7f. (CVSS:0.0) (Last Update:2018-12-20)
Vulnerability Details : WeBid version up to current version 1.2.2 contains a SQL Injection vulnerability in All five yourauctions*.php scripts that can result in Database Read via Blind SQL Injection. This attack appear to be exploitable via HTTP Request. This vulnerability appears to have been fixed in after commit 256a5f9d3eafbc477dcf77c7682446cc4b449c7f. Publish Date : 2018-12-20 Last Update Date : 2018-12-20 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2018-1000867
- References For CVE-2018-1000867 | |||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2018-1000867There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |