Vulnerabilities > Five Minute Webshop Project

DATE	CVE	VULNERABILITY TITLE	RISK
2022-06-08	CVE-2022-1685	SQL Injection vulnerability in Five Minute Webshop Project Five Minute Webshop The Five Minute Webshop WordPress plugin through 1.3.2 does not properly validate and sanitise the orderby parameter before using it in a SQL statement via the Manage Products admin page, leading to an SQL Injection network low complexity five-minute-webshop-project CWE-89	4.0
2022-06-08	CVE-2022-1686	SQL Injection vulnerability in Five Minute Webshop Project Five Minute Webshop The Five Minute Webshop WordPress plugin through 1.3.2 does not sanitise and escape the id parameter before using it in a SQL statement when editing a product via the admin dashboard, leading to an SQL Injection network low complexity five-minute-webshop-project CWE-89	4.0

Vulnerabilities > Five Minute Webshop Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Five Minute Webshop Project"}]}