Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2006-2307
Disclosure Date: May 11, 2006 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in Website Baker CMS before 2.6.4 allows remote attackers to inject arbitrary web script or HTML via a user display name.
0
Attacker Value
Unknown
CVE-2005-4140
Disclosure Date: December 09, 2005 (last updated February 22, 2025)
SQL injection vulnerability in admin/login/index.php in Website Baker 2.6.0 allows remote attackers to execute arbitrary SQL commands via the username parameter, as used by the user field.
0
