Vulnerabilities > Websitebaker > Websitebaker > 2.12.2

DATE CVE VULNERABILITY TITLE RISK
2020-10-01 CVE-2020-25990 SQL Injection vulnerability in Websitebaker 2.12.2
WebsiteBaker 2.12.2 allows SQL Injection via parameter 'display_name' in /websitebaker/admin/preferences/save.php.
network
low complexity
websitebaker CWE-89
7.5
7.5