Netclassifieds Security Vulnerabilities and Issues — Netclassifieds CVE List

Lucene search

Scriptdevelopers.netNetclassifieds

4 matches found

CVE•added 2007/06/22 6:30 p.m.•37 views

CVE-2007-3355

Multiple cross-site scripting (XSS) vulnerabilities in NetClassifieds Premium Edition allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.8AI score0.00329EPSS

CVE•added 2007/06/22 6:30 p.m.•34 views

CVE-2007-3356

NetClassifieds Premium Edition allows remote attackers to obtain sensitive information via certain requests that reveal the path in an error message, related to the display_errors setting in (1) Common.php and (2) imageresizer.php, and (3) the use of FILE in error reporting by imageresizer.php; and...

7.8CVSS6.2AI score0.00666EPSS

CVE•added 2007/06/22 6:30 p.m.•34 views

CVE-2007-3357

NetClassifieds Premium Edition does not use encryption for (1) stored passwords or (2) sensitive data, which might allow attackers to obtain information via certain vectors.

10CVSS6AI score0.00185EPSS

CVE•added 2007/06/22 6:30 p.m.•31 views

CVE-2007-3354

Multiple SQL injection vulnerabilities in NetClassifieds Premium Edition allow remote attackers to execute arbitrary SQL commands via the s_user_id parameter to ViewCat.php and other unspecified vectors. NOTE: the CatID/ViewCat.php, CatID/gallery.php, and ItemNum/ViewItem.php vectors are already co...

7.5CVSS8.4AI score0.00992EPSS