The Everything Development Company The Everything Development Engine vulnerabilities
2 known vulnerabilities affecting the_everything_development_company/the_everything_development_engine.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2008-0675P3HIGHCVSS 7.5PoC≤ pre-1.02008-02-12
CVE-2008-0675 [HIGH] CWE-89 CVE-2008-0675: SQL injection vulnerability in cms/index.pl in The Everything Development Engine in The Everything D
SQL injection vulnerability in cms/index.pl in The Everything Development Engine in The Everything Development System Pre-1.0 and earlier allows remote attackers to execute arbitrary SQL commands via the node_id parameter.
nvd
CVE-2008-0724P4MEDIUMCVSS 5.0PoC≤ pre-1.02008-02-12
CVE-2008-0724 [MEDIUM] CWE-255 CVE-2008-0724: The Everything Development Engine in The Everything Development System Pre-1.0 and earlier stores pa
The Everything Development Engine in The Everything Development System Pre-1.0 and earlier stores passwords in cleartext in a database, which makes it easier for context-dependent attackers to obtain access to user accounts.
nvd