📦 Webid

CVE-2024-35409 is a critical SQL injection vulnerability in WeBid 1.1.2 that allows attackers to execute arbitrary SQL commands via the admin/tax.php endpoint. This affects all WeBid 1.1.2 installatio...

CVE-2023-47397 is a critical code injection vulnerability in WeBid auction software that allows attackers to execute arbitrary code on affected systems. The vulnerability exists in the admin/categorie...

This vulnerability in WeBid 1.2.2 allows attackers to bypass password confirmation during user registration due to improper loose comparison. This affects all WeBid installations using the vulnerable ...