RSS   Vulnerabilities for 'Dating script'   RSS

2009-08-17
 
CVE-2009-2790

CWE-89
 

 
SQL injection vulnerability in cat_products.php in SoftBiz Dating Script allows remote attackers to execute arbitrary SQL commands via the cid parameter. NOTE: this might overlap CVE-2006-3271.4.

 
2006-06-28
 
CVE-2006-3271

CWE-Other
 

 
Multiple SQL injection vulnerabilities in Softbiz Dating 1.0 allow remote attackers to execute SQL commands via the (1) country and (2) sort_by parameters in (a) search_results.php; (3) browse parameter in (b) featured_photos.php; (4) cid parameter in (c) products.php, (d) index.php, and (e) news_desc.php.

 

 >>> Vendor: Softbiz 10 Products
Web hosting directory script
Resource repository script
B2b trading marketplace script
FAQ
Image gallery
Dating script
Banner exchange
Recipes portal script
Freelancers script
Jokes and funny pictures script


Copyright 2019, cxsecurity.com

 

Back to Top