Ryan Haudenschilt : Security Vulnerabilities, CVEs,
Multiple SQL injection vulnerabilities in Family Connections (aka FCMS) before 1.8.2 allow remote attackers to execute arbitrary SQL commands via the (1) letter parameter to addressbook.php, (2) id parameter to recipes.php, (3) year parameter to register.php, (4) poll_id parameter to home.php, and (5) email parameter to lostpw.php.
Max CVSS
7.5
EPSS Score
0.12%
Published
2010-04-22
Updated
2018-10-10
SQL injection vulnerability in login.php in Ryan Haudenschilt Battle.net Clan Script for PHP 1.5.1 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) user or (2) pass parameter.
Max CVSS
7.5
EPSS Score
10.63%
Published
2007-04-10
Updated
2017-10-11
2 vulnerabilities found