Vulnerabilities > Webidsupport > High

DATE CVE VULNERABILITY TITLE RISK
2021-01-27 CVE-2020-23359 Incorrect Comparison vulnerability in Webidsupport Webid 1.2.2
WeBid 1.2.2 admin/newuser.php has an issue with password rechecking during registration because it uses a loose comparison to check the identicalness of two passwords.
network
low complexity
webidsupport CWE-697
7.5
7.5
2014-07-29 CVE-2014-5114 Remote Security vulnerability in Webidsupport Webid 1.1.1
WeBid 1.1.1 allows remote attackers to conduct an LDAP injection attack via the (1) js or (2) cat parameter.
network
low complexity
webidsupport
7.5
7.5
2009-08-28 CVE-2008-7119 SQL Injection vulnerability in Webidsupport Webid 0.5.4
SQL injection vulnerability in item.php in WeBid auction script 0.5.4 allows remote attackers to execute arbitrary SQL commands via the id parameter.
network
low complexity
webidsupport CWE-89
7.5
7.5
2009-08-28 CVE-2008-7116 SQL Injection vulnerability in Webidsupport Webid 0.5.4
SQL injection vulnerability in the admin panel (admin/) in WeBid auction script 0.5.4 allows remote attackers to execute arbitrary SQL commands via the username.
network
low complexity
webidsupport CWE-89
7.5
7.5