Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2010-0611
Disclosure Date: February 11, 2010 (last updated October 04, 2023)
Multiple SQL injection vulnerabilities in adminlogin.php in Baal Systems 3.8 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters.
0
Attacker Value
Unknown
CVE-2004-2144
Disclosure Date: December 31, 2004 (last updated February 22, 2025)
Baal Smart Forms before 3.2 allows remote attackers to bypass authentication and obtain system access via a direct request to regadmin.php.
0
