Produkt Phpdatingclub (...) - CVEMAP.ORG

Podatności dla 'Phpdatingclub'

2009-06-23

CVE-2009-2179

CWE-89

SQL injection vulnerability in search.php in phpDatingClub 3.7 allows remote attackers to execute arbitrary SQL commands via the sform[day] parameter.

CVE-2009-2178

CWE-79

Cross-site scripting (XSS) vulnerability in website.php in phpDatingClub 3.7 allows remote attackers to inject arbitrary web script or HTML via the page parameter.

2008-07-15

CVE-2008-3179

CWE-22

Directory traversal vulnerability in website.php in Web 2 Business (W2B) phpDatingClub (aka Dating Club) 3.7 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter.

>>> Vendor: W2B 8 Produkty

Phphotresources

Phpdatingclub

Copyright 2024, cxsecurity.com