Vulnerabilities > Five Minute Webshop Project

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-08	CVE-2022-1685	Unspecified vulnerability in Five Minute Webshop Project Five Minute Webshop 1.3.2 The Five Minute Webshop WordPress plugin through 1.3.2 does not properly validate and sanitise the orderby parameter before using it in a SQL statement via the Manage Products admin page, leading to an SQL Injection network low complexity five-minute-webshop-project	4.9
2022-06-08	CVE-2022-1686	Unspecified vulnerability in Five Minute Webshop Project Five Minute Webshop 1.3.2 The Five Minute Webshop WordPress plugin through 1.3.2 does not sanitise and escape the id parameter before using it in a SQL statement when editing a product via the admin dashboard, leading to an SQL Injection network low complexity five-minute-webshop-project	2.7

Vulnerabilities > Five Minute Webshop Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Five Minute Webshop Project"}]}