RSS   Vulnerabilities for 'Pre ads portal'   RSS

2009-04-13
 
CVE-2008-6716

 

 
homeadmin/adminhome.php in Pre ADS Portal 2.0 and earlier does not require administrative authentication, which allows remote attackers to have an unspecified impact via a direct request.

 
 
CVE-2008-6715

 

 
Multiple cross-site scripting (XSS) vulnerabilities in Pre ADS Portal 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via the msg parameter to (1) homeadmin/adminhome.php and (2) homeadmin/signinform.php.

 
2008-06-30
 
CVE-2008-2916

CWE-89
 

 
Multiple SQL injection vulnerabilities in Pre ADS Portal 2.0 and earlier, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) cid parameter to showcategory.php and the (2) id parameter to software-description.php.

 

 >>> Vendor: Preprojects 14 Products
Pre shopping mall
E-smart cart
Php jobwebsite pro
Pre job board
Pre ads portal
Pre real estate listings
Pre e-learning portal
Pre resume submitter
Pre classified listings
Pre podcast portal
Pre classified listings asp
Pre online tests generator
Business cards designer
Pre printing press


Copyright 2024, cxsecurity.com

 

Back to Top