VYPR

Wf Sections

by Wf Sections

CVEs (2)

  • CVE-2007-1974Apr 12, 2007
    risk 0.03cvss epss 0.06

    SQL injection vulnerability in the getArticle function in class/wfsarticle.php in WF-Section (aka WF-Sections) 1.0.1, as used in Xoops modules such as (1) Zmagazine 1.0, (2) Happy Linux XFsection 1.07 and earlier, and possibly other modules, allows remote attackers to execute…

  • CVE-2005-0725Mar 8, 2005
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in the getAllbyArticle function in wfsfiles.php for WF-Sections (wfsections) 1.07 allows remote attackers to execute arbitrary SQL commands via the articleid parameter to article.php.