CVE-2007-5704

Multiple SQL injection vulnerabilities in CodeWidgets.com Online Event Registration Template allow remote attackers to execute arbitrary SQL commands via the (1) Email Address and (2) Password fields in (a) login.asp and (b) admin_login.asp.
Configurations

Configuration 1 (hide)

cpe:2.3:a:codewidgets:online_event_registration_template:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2007-10-29 22:46

Updated : 2024-02-28 11:01


NVD link : CVE-2007-5704

Mitre link : CVE-2007-5704

CVE.ORG link : CVE-2007-5704


JSON object : View

Products Affected

codewidgets

  • online_event_registration_template
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')