Vulnerabilities > Phpclassifiedsscript

DATE CVE VULNERABILITY TITLE RISK
2009-08-25 CVE-2008-7080 Permissions, Privileges, and Access Controls vulnerability in PHPclassifiedsscript PHP Classifieds Script
Team PHP PHP Classifieds Script stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain database credentials via a direct request for admin/backup/datadump.sql.
network
low complexity
phpclassifiedsscript CWE-264
5.0
2008-05-27 CVE-2008-2453 SQL Injection vulnerability in PHPclassifiedsscript PHP Classifieds Script
Multiple SQL injection vulnerabilities in PHP Classifieds Script allow remote attackers to execute arbitrary SQL commands via the fatherID parameter to (1) browse.php and (2) search.php.
network
low complexity
phpclassifiedsscript CWE-89
7.5