Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
scriptdevelopers.net netclassifieds 1.0.1 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2007-3354
Multiple SQL injection vulnerabilities in NetClassifieds Premium Edition allow remote malicious users to execute arbitrary SQL commands via the s_user_id parameter to ViewCat.php and other unspecified vectors. NOTE: the CatID/ViewCat.php, CatID/gallery.php, and ItemNum/ViewItem.p...
Scriptdevelopers.net Netclassifieds 1.9.6.3
Scriptdevelopers.net Netclassifieds 1.0.1
Scriptdevelopers.net Netclassifieds 1.5.1
1 EDB exploit
7.5
CVSSv2
CVE-2005-3978
Multiple SQL injection vulnerabilities in NetClassifieds Premium Edition 1.0.1, Professional Edition 1.5.1, Standard Edition 1.9.6.3, and Free Edition 1.0.1 allow remote malicious users to execute arbitrary SQL commands via the (1) CatID parameter in (a) ViewCat.php and (b) galle...
Scriptdevelopers.net Netclassifieds 1.9.6.3
Scriptdevelopers.net Netclassifieds 1.0.1
Scriptdevelopers.net Netclassifieds 1.5.1
3 EDB exploits
4.3
CVSSv2
CVE-2007-3355
Multiple cross-site scripting (XSS) vulnerabilities in NetClassifieds Premium Edition allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Scriptdevelopers.net Netclassifieds 1.0.1
7.8
CVSSv2
CVE-2007-3356
NetClassifieds Premium Edition allows remote malicious users to obtain sensitive information via certain requests that reveal the path in an error message, related to the display_errors setting in (1) Common.php and (2) imageresizer.php, and (3) the use of __FILE__ in error repor...
Scriptdevelopers.net Netclassifieds 1.0.1
10
CVSSv2
CVE-2007-3357
NetClassifieds Premium Edition does not use encryption for (1) stored passwords or (2) sensitive data, which might allow malicious users to obtain information via certain vectors.
Scriptdevelopers.net Netclassifieds 1.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started