Filtered by vendor Cafeengine Subscriptions
Filtered by product Easycafeengine Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2009-0574 1 Cafeengine 1 Easycafeengine 2024-11-21 N/A
SQL injection vulnerability in index.php in Easy CafeEngine allows remote attackers to execute arbitrary SQL commands via the catid parameter, a different vector than CVE-2008-4604.
CVE-2008-4605 1 Cafeengine 1 Easycafeengine 2024-11-21 N/A
SQL injection vulnerability in CafeEngine allows remote attackers to execute arbitrary SQL commands via the id parameter to (1) dish.php and (2) menu.php.
CVE-2008-4604 1 Cafeengine 1 Easycafeengine 2024-11-21 N/A
SQL injection vulnerability in index.php in Easy CafeEngine 1.1 allows remote attackers to execute arbitrary SQL commands via the itemid parameter.