SoftDatepro Dating Social Network 1.3 allows SQL Injection via the viewprofile.php profid parameter, the viewmessage.php sender_id parameter, or the /admin Email field, a related issue to CVE-2017-15971.
CPE | Name | Operator | Version |
---|---|---|---|
dating_software | eq | 1.3 |