RSS   Vulnerabilities for 'Living local'   RSS

2009-03-26
 
CVE-2008-6530

 

 
Unrestricted file upload vulnerability in editimage.php in eZoneScripts Living Local 1.1 allows remote authenticated administrators to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request to the uploaded file.

 
 
CVE-2008-6529

 

 
Cross-site scripting (XSS) vulnerability in listtest.php in eZoneScripts Living Local 1.1 allows remote attackers to inject arbitrary web script or HTML via the r parameter.

 
2008-09-05
 
CVE-2008-3943

CWE-89
 

 
SQL injection vulnerability in listtest.php in eZoneScripts Living Local 1.1 allows remote attackers to execute arbitrary SQL commands via the r parameter.

 

 >>> Vendor: Ezonescripts 4 Products
Living local
Adult banner exchange website
Link trader script
Dating website script


Copyright 2024, cxsecurity.com

 

Back to Top