Deltascripts » Php Classifieds » 7.1 : Security Vulnerabilities, CVEs,
SQL injection vulnerability in login.php in DeltaScripts PHP Classifieds 7.5 and earlier allows remote attackers to execute arbitrary SQL commands via the admin_username parameter (aka admin field). NOTE: some of these details are obtained from third party information.
Max CVSS
7.5
EPSS Score
0.12%
Published
2008-12-31
Updated
2017-09-29
SQL injection vulnerability in detail.php in DeltaScripts PHP Classifieds 7.5 and earlier allows remote attackers to execute arbitrary SQL commands via the siteid parameter, a different vector than CVE-2006-5828.
Max CVSS
7.5
EPSS Score
0.09%
Published
2008-12-31
Updated
2017-09-29
SQL injection vulnerability in detail.php in DeltaScripts PHP Classifieds 7.1 and earlier allows remote attackers to execute arbitrary SQL commands via the user_id parameter.
Max CVSS
7.5
EPSS Score
0.57%
Published
2006-11-10
Updated
2017-10-19
PHP remote file inclusion vulnerability in functions.php in DeltaScripts PHP Classifieds 7.1 allows remote attackers to execute arbitrary PHP code via a URL in the set_path parameter.
Max CVSS
7.5
EPSS Score
1.17%
Published
2006-10-26
Updated
2018-10-17
Multiple SQL injection vulnerabilities in PHP Classifieds 7.1 allow remote attackers to execute arbitrary SQL commands via (1) the catid_search parameter in search.php and (2) the catid parameter in index.php.
Max CVSS
7.5
EPSS Score
0.73%
Published
2006-10-10
Updated
2017-10-19
5 vulnerabilities found