W2B : Security Vulnerabilities, CVEs, Published In 2008 CVSS score >= 5
Directory traversal vulnerability in website.php in Web 2 Business (W2B) phpDatingClub (aka Dating Club) 3.7 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
Max CVSS
7.5
EPSS Score
2.37%
Published
2008-07-15
Updated
2017-09-29
PHP remote file inclusion vulnerability in index.php in W2B Online Banking allows remote attackers to execute arbitrary PHP code via a URL in the ilang parameter.
Max CVSS
7.5
EPSS Score
2.73%
Published
2008-04-18
Updated
2017-08-08
SQL injection vulnerability in cat.php in W2B phpHotResources allows remote attackers to execute arbitrary SQL commands via the kind parameter.
Max CVSS
7.5
EPSS Score
0.12%
Published
2008-04-16
Updated
2017-08-08
SQL injection vulnerability in browse.php in W2B DatingClub (aka Dating Club) allows remote attackers to execute arbitrary SQL commands via the age_to parameter in a browsebyCat action.
Max CVSS
7.5
EPSS Score
0.12%
Published
2008-04-16
Updated
2017-08-08
4 vulnerabilities found