Itechscripts Itechclassifieds vulnerabilities
3 known vulnerabilities affecting itechscripts/itechclassifieds.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2014-100020P3HIGHCVSS 7.5PoCv3.03.0572015-01-13
CVE-2014-100020 [HIGH] CVE-2014-100020: SQL injection vulnerability in ChangeEmail.php in iTechClassifieds 3.03.057 allows remote attackers
SQL injection vulnerability in ChangeEmail.php in iTechClassifieds 3.03.057 allows remote attackers to execute arbitrary SQL commands via the PreviewNum parameter. NOTE: the CatID parameter is already covered by CVE-2008-0685.
nvd
CVE-2008-0685P3HIGHCVSS 7.5PoCv3.02008-02-12
CVE-2008-0685 [HIGH] CWE-89 CVE-2008-0685: SQL injection vulnerability in ViewCat.php in iTechClassifieds 3.0 allows remote attackers to execut
SQL injection vulnerability in ViewCat.php in iTechClassifieds 3.0 allows remote attackers to execute arbitrary SQL commands via the CatID parameter.
nvd
CVE-2008-0684P4MEDIUMCVSS 4.3PoCv3.02008-02-12
CVE-2008-0684 [MEDIUM] CWE-79 CVE-2008-0684: Cross-site scripting (XSS) vulnerability in ViewCat.php in iTechClassifieds 3.0 allows remote attack
Cross-site scripting (XSS) vulnerability in ViewCat.php in iTechClassifieds 3.0 allows remote attackers to inject arbitrary web script or HTML via the CatID parameter.
nvd