Alstrasoft » Affiliate Network Pro : Security Vulnerabilities, CVEs, (Sql injection)
SQL injection vulnerability in index.php in AlstraSoft Affiliate Network Pro allows remote attackers to execute arbitrary SQL commands via the pgm parameter in a directory action.
Max CVSS
7.5
EPSS Score
0.94%
Published
2008-07-21
Updated
2017-09-29
Multiple SQL injection vulnerabilities in AlstraSoft Affiliate Network Pro allow remote attackers to execute arbitrary SQL commands via (1) the pgmid parameter in an uploadProducts action to merchants/index.php and possibly (2) the rowid parameter to merchants/temp.php.
Max CVSS
7.5
EPSS Score
0.15%
Published
2007-07-30
Updated
2008-11-15
Multiple SQL injection vulnerabilities in AlstraSoft Affiliate Network Pro 7.2 allow remote attackers to bypass authentication and execute arbitrary SQL commands via the (1) username or (2) password to admin/admin_validate_login, or the (3) login, (4) password, and (5) flag parameters to login_validate.php.
Max CVSS
7.5
EPSS Score
0.36%
Published
2005-11-24
Updated
2017-07-11
3 vulnerabilities found