Vulnerabilities > Boldfx

DATE CVE VULNERABILITY TITLE RISK
2010-03-18 CVE-2009-4731 SQL Injection vulnerability in Boldfx Model Agency Manager PRO
SQL injection vulnerability in photos.php in Model Agency Manager PRO (formerly Modeling Agency Content Management Script) allows remote attackers to execute arbitrary SQL commands via the album parameter.
network
low complexity
boldfx CWE-89
7.5
2009-12-17 CVE-2009-4350 SQL Injection vulnerability in Boldfx Arctic Issue Tracker 2.1.1
SQL injection vulnerability in index.php in Arctic Issue Tracker 2.1.1 allows remote attackers to execute arbitrary SQL commands via the (1) matchings[id] or (2) matchings[title] parameters in a Login action to an unspecified program, or (3) the matchings[id] parameter in a search action to index.php, a different vector than CVE-2008-3250.
network
low complexity
boldfx CWE-89
7.5
2009-09-11 CVE-2009-3175 SQL Injection vulnerability in Boldfx Model Agency Manager PRO
Multiple SQL injection vulnerabilities in Model Agency Manager PRO (formerly Modeling Agency Content Management Script) allow remote attackers to execute arbitrary SQL commands via the user_id parameter to (1) view.php, (2) photos.php, and (3) motm.php; and the (4) id parameter to forum_message.php.
network
low complexity
boldfx CWE-89
7.5