Multiple SQL injection vulnerabilities in NetClassifieds Premium Edition allow remote malicious users to execute arbitrary SQL commands via the s_user_id parameter to ViewCat.php and other unspecified vectors. NOTE: the CatID/ViewCat.php, CatID/gallery.php, and ItemNum/ViewItem.php vectors are already covered by CVE-2005-3978.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
scriptdevelopers.net netclassifieds 1.9.6.3 |
||
scriptdevelopers.net netclassifieds 1.0.1 |
||
scriptdevelopers.net netclassifieds 1.5.1 |