Vulnerabilities > Weekly Drawing Contest
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-03-22 | CVE-2007-1603 | Security Bypass vulnerability in Weekly Drawing Contest Weekly Drawing Contest 0.0.1 admin/contest.php in Weekly Drawing Contest 0.0.1 allows remote attackers to bypass authentication, and insert new contest information into a database, via a direct POST request. | 7.5 |
2007-03-22 | CVE-2007-1602 | SQL-Injection vulnerability in Weekly Drawing Contest Weekly Drawing Contest 0.0.1 SQL injection vulnerability in check_vote.php in Weekly Drawing Contest 0.0.1 allows remote attackers to execute arbitrary SQL commands via the order parameter. | 7.5 |