W2B » Phpdatingclub : Security Vulnerabilities, CVEs, CVSS score >= 5
SQL injection vulnerability in search.php in phpDatingClub 3.7 allows remote attackers to execute arbitrary SQL commands via the sform[day] parameter.
Max CVSS
7.5
EPSS Score
0.13%
Published
2009-06-23
Updated
2017-09-29
Directory traversal vulnerability in website.php in Web 2 Business (W2B) phpDatingClub (aka Dating Club) 3.7 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
Max CVSS
7.5
EPSS Score
2.37%
Published
2008-07-15
Updated
2017-09-29
2 vulnerabilities found