3 matches found
CVE-2008-3672
SQL injection vulnerability in showcategory.php in PozScripts Classified Ads allows remote attackers to execute arbitrary SQL commands via the cid parameter, a different vector than CVE-2008-3673. NOTE: the provenance of this information is unknown; the details are obtained solely from third part...
Sql injection
SQL injection vulnerability in browsecats.php in PozScripts Classified Ads allows remote attackers to execute arbitrary SQL commands via the cid parameter, a different vector than CVE-2008-3672...
CVE-2008-3672
CVE-2008-3672 is a SQL injection vulnerability in PozScripts Classified Ads, affecting the showcategory.php handler (cid parameter). The vulnerability arises from user-controlled input not being properly sanitized, enabling remote attackers to craft arbitrary SQL commands. The vulnerability is do...