Vulnerabilities > W3B CMS > AKA W3Blabor CMS
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-02-16 | CVE-2009-0597 | SQL Injection vulnerability in W3B CMS AKA W3Blabor CMS SQL injection vulnerability in admin/index.php in w3b>cms (aka w3blabor CMS) before 3.4.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the benutzername parameter (aka Username field) in a login action. | 6.8 |