Description
SQL injection vulnerability in the admin panel (admin/) in WeBid auction script 0.5.4 allows remote attackers to execute arbitrary SQL commands via the username.
Remediation
References
Related Vulnerabilities
MySQL CVE-2012-0102 Vulnerability (CVE-2012-0102)
Drupal Core 7.x Cross-Site Scripting (7.0 - 7.79)
WordPress 4.7.x Multiple Vulnerabilities (4.7 - 4.7.21)
WordPress Plugin Current Book Cross-Site Scripting (1.0.1)
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-8005)