2 matches found
CVE-2008-5785
CVE-2008-5785 affects V3 Chat - Profiles/Dating Script 3.0.2. The vulnerability is a SQL injection in the login mechanism, exploitable via the username and password fields, allowing remote execution of arbitrary SQL commands. The available sources confirm the affected product and the injection ve...
CVE-2008-5784
CVE-2008-5784 affects V3 Chat – Profiles/Dating Script 3.0.2. The root cause is an authentication bypass: setting the admin cookie to 1 grants remote attackers administrative access. Impact is described as remote authentication bypass with full admin privileges (per the sources). There is no expl...