RSS   Vulnerabilities for 'V3 chat profiles dating script'   RSS

2008-12-31
 
CVE-2008-5785

CWE-89
 

 
SQL injection vulnerability in V3 Chat - Profiles/Dating Script 3.0.2 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password fields.

 
 
CVE-2008-5784

CWE-287
 

 
V3 Chat - Profiles/Dating Script 3.0.2 allows remote attackers to bypass authentication and gain administrative access by setting the admin cookie to 1.

 

 >>> Vendor: V3chat 2 Products
V3 chat live support
V3 chat profiles dating script


Copyright 2019, cxsecurity.com

 

Back to Top