Critical severity9.8NVD Advisory· Published Apr 3, 2017· Updated May 13, 2026
CVE-2017-7410
CVE-2017-7410
Description
Multiple SQL injection vulnerabilities in account/signup.php and account/signup2.php in WebsiteBaker 2.10.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) username, (2) display_name parameter.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- project.websitebaker.org/issues/39nvdVendor Advisory
- www.securityfocus.com/bid/97495nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1038173nvdThird Party AdvisoryVDB Entry
- forum.websitebaker.org/index.php/topic%2C30187.0.htmlnvd
News mentions
0No linked articles in our index yet.