Webiness Inventory
Approved changes feed: RSS · Atom
cpe:2.3:a:github:webiness_inventory:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Github (b5027ca2-9bb9-532e-8779-8399b14c3e3b) |
|---|---|
| Product | Webiness Inventory (5b6cd8e6-eb8b-5dab-8c4a-9dd3ea0e6716) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2018-25188 |
vulnerable | 2026-06-03 14:38:41.117806 |
Webiness Inventory 2.3 SQL Injection via WsModelGrid.php
HIGH (8.2)
Webiness Inventory 2.3 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the order parameter. Attackers can send POST requests to the WsModelGrid.php endpoint with crafted SQL payloads to extract sensitive database information including usernames, databases, and version details.
Published: 2026-03-06T12:19:14.404Z
Updated: 2026-03-09T19:00:10.242Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.