WeBid Remote File Include And SQL Injection Vulnerabilities Network Vulnerability

Summary

WeBid to a remote file-include issue and an SQL-injection issue. A successful exploit may allow an attacker to execute malicious code within the context of the webserver process, to compromise the application, to access or modify data, or to exploit latent vulnerabilities in the underlying database. WeBid 1.0.4 is vulnerable other versions may also be affected.

References

http://www.securityfocus.com/bid/55077
http://www.webidsupport.com/

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 6.4 AV:N/AC:L/Au:N/C:P/I:P/A:N

Related Vulnerabilities

Apache Tomcat Multiple Vulnerabilities June-09
Apache Tomcat source.jsp malformed request information disclosure
Advantech WebAccess Multiple Stack Based Buffer Overflow Vulnerabilities
Apache Struts Showcase Multiple Persistence Cross-Site Scripting Vulnerabilities
AMSI 'file' Parameter Directory Traversal Vulnerability

WeBid Remote File Include and SQL Injection Vulnerabilities

Take action and discover your vulnerabilities