Vulnerabilities > Sendy

DATE CVE VULNERABILITY TITLE RISK
2015-01-13 CVE-2014-100012 SQL Injection vulnerability in Sendy 1.1.8.4
SQL injection vulnerability in /app in Sendy 1.1.8.4 allows remote attackers to execute arbitrary SQL commands via the i parameter.
network
low complexity
sendy CWE-89
7.5
7.5
2015-01-13 CVE-2014-100011 SQL Injection vulnerability in Sendy 1.1.9.1
SQL injection vulnerability in /send-to in Sendy 1.1.9.1 allows remote attackers to execute arbitrary SQL commands via the c parameter.
network
low complexity
sendy CWE-89
7.5
7.5