VYPR

Webmplayer

by Webmplayer

CVEs (2)

  • CVE-2007-1135Mar 2, 2007
    risk 0.00cvss epss 0.01

    Multiple SQL injection vulnerabilities in WebMplayer before 0.6.1-Alpha allow remote attackers to execute arbitrary SQL commands via the (1) strid parameter to index.php and the (2) id[0] or other id array index parameter to filecheck.php.

  • CVE-2007-1136Mar 2, 2007
    risk 0.00cvss epss 0.02

    index.php in WebMplayer before 0.6.1-Alpha allows remote attackers to execute arbitrary code via shell metacharacters in an exec function call. NOTE: some sources have referred to this as eval injection in the param parameter, but CVE source inspection suggests that this is…