RSS   Vulnerabilities for
'Pre multi-vendor shopping malls'
   RSS

2009-02-20
 
CVE-2008-6228

 

 
Pre Multi-Vendor Shopping Malls allows remote attackers to bypass authentication and gain administrative access by setting the (1) adminname and the (2) adminid cookies to "admin".

 
 
CVE-2008-6227

 

 
SQL injection vulnerability in buyer_detail.php in Pre Multi-Vendor Shopping Malls allows remote attackers to execute arbitrary SQL commands via the (1) sid and (2) cid parameters.

 

 >>> Vendor: Preproject 6 Products
Pre survey poll
Pre simple cms
Php auto listings script
Pre multi-vendor shopping malls
Pre podcast portal
Pre asp job board


Copyright 2024, cxsecurity.com

 

Back to Top