2 matches found
CVE-2009-3358
The CVE-2009-3358 entry corresponds to a SQL injection in profile.php of the Tourism Scripts Adult Portal escort listing, exploitable via the user_id parameter. Root cause is improper handling of user_id leading to arbitrary SQL execution by remote attackers. The vulnerability is classified with ...
CVE-2009-3358
SQL injection vulnerability in profile.php in Tourism Scripts Adult Portal escort listing allows remote attackers to execute arbitrary SQL commands via the userid parameter...