Worms-League Webleague vulnerabilities
2 known vulnerabilities affecting worms-league/webleague.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2009-4560P3HIGHCVSS 7.5PoCv2.2.02010-01-04
CVE-2009-4560 [HIGH] CWE-89 CVE-2009-4560: SQL injection vulnerability in profile.php in WebLeague 2.2.0 allows remote attackers to execute arb
SQL injection vulnerability in profile.php in WebLeague 2.2.0 allows remote attackers to execute arbitrary SQL commands via the name parameter.
nvd
CVE-2009-4561P3MEDIUMCVSS 6.8PoCv2.2.02010-01-04
CVE-2009-4561 [MEDIUM] CWE-89 CVE-2009-4561: Multiple SQL injection vulnerabilities in Admin/index.php in WebLeague 2.2.0, when magic_quotes_gpc
Multiple SQL injection vulnerabilities in Admin/index.php in WebLeague 2.2.0, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.
nvd