RSS   Vulnerabilities for 'Post affiliate pro'   RSS

2008-12-17
 
CVE-2008-5630

CWE-89
 

 
SQL injection vulnerability in merchants/index.php in Post Affiliate Pro 3 and 3.1.4 allows remote attackers to execute arbitrary SQL commands via the umprof_status parameter.

 
2008-10-17
 
CVE-2008-4602

CWE-22
 

 
Directory traversal vulnerability in index.php in Post Affiliate Pro 2.0 allows remote authenticated users to read and possibly execute arbitrary local files via a .. (dot dot) in the md parameter.

 

 >>> Vendor: Qualityunit 2 Products
Post affiliate pro
Download protect


Copyright 2024, cxsecurity.com

 

Back to Top