RSS   Vulnerabilities for 'Easycafeengine'   RSS

2009-02-13
 
CVE-2009-0574

CWE-89
 

 
SQL injection vulnerability in index.php in Easy CafeEngine allows remote attackers to execute arbitrary SQL commands via the catid parameter, a different vector than CVE-2008-4604.

 
2008-10-17
 
CVE-2008-4605

CWE-89
 

 
SQL injection vulnerability in CafeEngine allows remote attackers to execute arbitrary SQL commands via the id parameter to (1) dish.php and (2) menu.php.

 
 
CVE-2008-4604

CWE-89
 

 
SQL injection vulnerability in index.php in Easy CafeEngine 1.1 allows remote attackers to execute arbitrary SQL commands via the itemid parameter.

 


Copyright 2024, cxsecurity.com

 

Back to Top