Multiple SQL injection vulnerabilities in Recipes Website (Recipes Complete Website) 1.1.14 allow remote attackers to execute arbitrary SQL commands via the (1) recipeid parameter to recipe.php or the (2) categoryid parameter to list.php.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Recipes_complete_website | Recipes_complete_website | 1.1.14 (including) | 1.1.14 (including) |
References
- http://secunia.com/advisories/23083
- http://www.securityfocus.com/bid/21270
- http://www.vupen.com/english/advisories/2006/4686
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30509
- https://www.exploit-db.com/exploits/2834
- http://secunia.com/advisories/23083
- http://www.securityfocus.com/bid/21270
- http://www.vupen.com/english/advisories/2006/4686
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30509
- https://www.exploit-db.com/exploits/2834