RSS   Vulnerabilities for 'Heybbs'   RSS

2020-09-03
 
CVE-2020-25006

CWE-89
 

 
Heybbs v1.2 has a SQL injection vulnerability in login.php file via the username parameter which may allow a remote attacker to execute arbitrary code.

 
 
CVE-2020-25005

CWE-89
 

 
Heybbs v1.2 has a SQL injection vulnerability in msg.php file via the ID parameter which may allow a remote attacker to execute arbitrary code.

 
 
CVE-2020-25004

CWE-89
 

 
Heybbs v1.2 has a SQL injection vulnerability in user.php file via the ID parameter which may allow a remote attacker to execute arbitrary code.

 


Copyright 2024, cxsecurity.com

 

Back to Top