Vulnerabilities > W2B > Online Banking > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-04-18 | CVE-2008-1893 | Code Injection vulnerability in W2B Online Banking PHP remote file inclusion vulnerability in index.php in W2B Online Banking allows remote attackers to execute arbitrary PHP code via a URL in the ilang parameter. | 7.5 |
| 2007-06-11 | CVE-2007-3175 | SQL-Injection vulnerability in Online Banking Multiple SQL injection vulnerabilities in W2B Online Banking allow remote attackers to execute arbitrary SQL commands via (1) the draft parameter to mailer.w2b or (2) the listDocPay parameter to DocPay.w2b. | 7.5 |