CVE-2019-25757 | Wdmtech vWishlist 1.0.1 POST Request userid sql injection (Exploit 46225 / EUVD-2019-20193)
A vulnerability labeled as critical has been found in Wdmtech vWishlist 1.0.1. This vulnerability affects unknown code of the component POST Request Handler. Such manipulation of the argument userid leads to sql injection.
This vulnerability is uniquely identified as CVE-2019-25757. The attack can be launched remotely. Moreover, an exploit is present.