RSS   Vulnerabilities for 'Radbids'   RSS

2009-10-02
 
CVE-2009-3530

 

 
Cross-site scripting (XSS) vulnerability in storefront.php in RadScripts RadBids Gold 4 allows remote attackers to inject arbitrary web script or HTML via the mode parameter.

 
 
CVE-2009-3529

 

 
SQL injection vulnerability in index.php in RadScripts RadBids Gold 4 allows remote attackers to execute arbitrary SQL commands via the fid parameter in a view_forum action, a different vector than CVE-2005-1074.

 
2005-05-02
 
CVE-2005-1075

 

 
Multiple cross-site scripting (XSS) vulnerabilities in RadScripts RadBids Gold 2 allow remote attackers to inject arbitrary web script or HTML via (1) the farea parameter to faq.php or the (2) cat, (3) order, or (4) area parameters to index.php.

 
 
CVE-2005-1074

 

 
SQL injection vulnerability in index.php for RadScripts RadBids Gold 2 allows remote attackers to execute arbitrary SQL commands via the mode parameter.

 
 
CVE-2005-1073

 

 
Directory traversal vulnerability in index.php for RadScripts RadBids Gold 2 allows remote attackers to read arbitrary files via the read parameter.

 

 >>> Vendor: Radscripts 4 Products
Radbids
Radlance
Radclassifieds
Radnics


Copyright 2024, cxsecurity.com

 

Back to Top