Bmscripts » Bm Classifieds : Security Vulnerabilities, CVEs, CVSS score >= 2
Multiple SQL injection vulnerabilities in BM Classifieds 20080309 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) cat parameter to showad.php and the (2) ad parameter to pfriendly.php.
Max CVSS
7.5
EPSS Score
0.10%
Published
2008-03-10
Updated
2017-09-29
1 vulnerabilities found