Vulnerabilities > Socialgroupie > Social Groupie
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-03-02 | CVE-2008-6367 | Improper Input Validation vulnerability in Socialgroupie Social Groupie Unrestricted file upload vulnerability in Photos/create_album.php in Social Groupie allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in Member_images/. | 8.5 |
2009-03-02 | CVE-2008-6358 | SQL Injection vulnerability in Socialgroupie Social Groupie SQL injection vulnerability in group_index.php in Social Groupie allows remote attackers to execute arbitrary SQL commands via the id parameter. | 7.5 |