Vulnerabilities > Boldfx
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2010-03-18 | CVE-2009-4731 | SQL Injection vulnerability in Boldfx Model Agency Manager PRO SQL injection vulnerability in photos.php in Model Agency Manager PRO (formerly Modeling Agency Content Management Script) allows remote attackers to execute arbitrary SQL commands via the album parameter. | 7.5 |
2009-12-17 | CVE-2009-4350 | SQL Injection vulnerability in Boldfx Arctic Issue Tracker 2.1.1 SQL injection vulnerability in index.php in Arctic Issue Tracker 2.1.1 allows remote attackers to execute arbitrary SQL commands via the (1) matchings[id] or (2) matchings[title] parameters in a Login action to an unspecified program, or (3) the matchings[id] parameter in a search action to index.php, a different vector than CVE-2008-3250. | 7.5 |
2009-09-11 | CVE-2009-3175 | SQL Injection vulnerability in Boldfx Model Agency Manager PRO Multiple SQL injection vulnerabilities in Model Agency Manager PRO (formerly Modeling Agency Content Management Script) allow remote attackers to execute arbitrary SQL commands via the user_id parameter to (1) view.php, (2) photos.php, and (3) motm.php; and the (4) id parameter to forum_message.php. | 7.5 |