Bmscripts » Bm Classifieds : Security Vulnerabilities, CVEs, Published In 2008 (Sql injection)
Multiple SQL injection vulnerabilities in BM Classifieds 20080309 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) cat parameter to showad.php and the (2) ad parameter to pfriendly.php.
Max CVSS
7.5
EPSS Score
0.10%
Published
2008-03-10
Updated
2017-09-29
1 vulnerabilities found