Vulnerabilities > V3Chat > V3 Chat Profiles Dating Script > 3.0.2

DATE CVE VULNERABILITY TITLE RISK
2008-12-31 CVE-2008-5785 SQL Injection vulnerability in V3Chat V3 Chat Profiles Dating Script 3.0.2
SQL injection vulnerability in V3 Chat - Profiles/Dating Script 3.0.2 allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password fields.
network
low complexity
v3chat CWE-89
7.5
2008-12-31 CVE-2008-5784 Reliance on Cookies without Validation and Integrity Checking vulnerability in V3Chat V3 Chat Profiles Dating Script 3.0.2
V3 Chat - Profiles/Dating Script 3.0.2 allows remote attackers to bypass authentication and gain administrative access by setting the admin cookie to 1.
network
low complexity
v3chat CWE-565
critical
9.8