RSS   Vulnerabilities for 'Pre classified listings'   RSS

2009-08-03
 
CVE-2008-6888

 

 
Cross-site scripting (XSS) vulnerability in signup.asp in Pre Classified Listings 1.0 allows remote attackers to inject arbitrary web script or HTML via the address parameter.

 
 
CVE-2008-6887

 

 
SQL injection vulnerability in detailad.asp in Pre Classified Listings 1.0 allows remote attackers to execute arbitrary SQL commands via the siteid parameter.

 
2009-02-20
 
CVE-2008-6231

 

 
Pre Classified Listing PHP allows remote attackers to bypass authentication and gain administrative access by setting the (1) adminname and the (2) adminid cookies to "admin".

 
2009-02-04
 
CVE-2008-6055

CWE-264
 

 
PreProjects Pre Classified Listings stores pclasp.mdb under the web root with insufficient access control, which allows remote attackers to obtain passwords via a direct request.

 

 >>> Vendor: Preprojects 14 Products
Pre shopping mall
E-smart cart
Php jobwebsite pro
Pre job board
Pre ads portal
Pre real estate listings
Pre e-learning portal
Pre resume submitter
Pre classified listings
Pre podcast portal
Pre classified listings asp
Pre online tests generator
Business cards designer
Pre printing press


Copyright 2024, cxsecurity.com

 

Back to Top