3 matches found
CVE-2008-3756
SQL injection vulnerability in tr.php in YourFreeWorld Viral Marketing Script allows remote attackers to execute arbitrary SQL commands via the id parameter...
Sql injection
SQL injection vulnerability in tr.php in YourFreeWorld Viral Marketing Script allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2008-3756
The CVE-2008-3756 entry concerns a SQL injection in tr.php of the YourFreeWorld Viral Marketing Script, exploitable via the id parameter to execute arbitrary SQL commands. The NVD entry lists a CVSSv2 base score of 7.5 (HIGH) with network access, low attack complexity, and no authentication requi...