Vulnerabilities > Ezonescripts
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-08-19 | CVE-2008-6987 | Remote File Upload vulnerability in eZoneScripts Dating Website Unrestricted file upload vulnerability in eZoneScripts Dating Website script allows remote attackers to execute arbitrary code via unknown vectors. | 7.5 |
2009-03-26 | CVE-2008-6530 | Local Arbitrary File Upload vulnerability in Ezonescripts Living Local 1.1 Unrestricted file upload vulnerability in editimage.php in eZoneScripts Living Local 1.1 allows remote authenticated administrators to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via a direct request to the uploaded file. | 6.5 |
2009-03-26 | CVE-2008-6529 | Cross-Site Scripting vulnerability in Ezonescripts Living Local 1.1 Cross-site scripting (XSS) vulnerability in listtest.php in eZoneScripts Living Local 1.1 allows remote attackers to inject arbitrary web script or HTML via the r parameter. | 4.3 |
2009-02-10 | CVE-2008-6102 | SQL Injection vulnerability in Ezonescripts Link Trader Script SQL injection vulnerability in ratelink.php in Link Trader Script allows remote attackers to execute arbitrary SQL commands via the lnkid parameter. | 7.5 |
2009-02-10 | CVE-2008-6101 | SQL Injection vulnerability in Ezonescripts Adult Banner Exchange Website SQL injection vulnerability in click.php in Adult Banner Exchange Website allows remote attackers to execute arbitrary SQL commands via the targetid parameter. | 7.5 |
2008-09-05 | CVE-2008-3943 | SQL Injection vulnerability in Ezonescripts Living Local 1.1 SQL injection vulnerability in listtest.php in eZoneScripts Living Local 1.1 allows remote attackers to execute arbitrary SQL commands via the r parameter. | 7.5 |