Vulnerabilities > Nkinfoweb

DATE CVE VULNERABILITY TITLE RISK
2010-04-29 CVE-2010-1599 SQL Injection vulnerability in Nkinfoweb 2.5/5.2.2.0
SQL injection vulnerability in loadorder.php in NKInFoWeb 2.5 and 5.2.2.0 allows remote attackers to execute arbitrary SQL commands via the id_sp parameter.
network
low complexity
nkinfoweb CWE-89
7.5
7.5