Vulnerabilities > Globaldatingsoftware > Premiumdatingscript > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-09 | CVE-2021-41695 | SQL Injection vulnerability in Globaldatingsoftware Premiumdatingscript 4.2.7.7 An SQL Injection vulnerability exists in Premiumdatingscript 4.2.7.7 via the ip parameter in connect.php. | 9.8 |
| 2021-12-09 | CVE-2021-41694 | Use of Insufficiently Random Values vulnerability in Globaldatingsoftware Premiumdatingscript 4.2.7.7 An Incorrect Access Control vulnerability exists in Premiumdatingscript 4.2.7.7 via the password change procedure in requests\user.php. | 9.8 |