Vulnerabilities > Ifusionservices
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-08-28 | CVE-2008-7114 | SQL Injection vulnerability in Ifusionservices Ifdate SQL injection vulnerability in members_search.php in iFusion Services iFdate 2.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the name field. | 6.8 |
2007-05-16 | CVE-2007-2713 | Authentication Bypass vulnerability in IFDate Administrative ifdate 2.x sends a redirect to the web browser but does not exit when administrative credentials are missing, which allows remote attackers to obtain administrative access via a direct request for the admin/ URI. | 10.0 |
2006-05-30 | CVE-2006-2663 | Cross-Site Scripting vulnerability in Ifusionservices Iflance 1.1 Multiple cross-site scripting (XSS) vulnerabilities in iFlance 1.1 allow remote attackers to inject arbitrary web script or HTML via certain inputs to (1) acc_verify.php or (2) project.php. | 4.3 |