Bm Classifieds Security Vulnerabilities

cve

CVE-2008-1272

Multiple SQL injection vulnerabilities in BM Classifieds 20080309 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) cat parameter to showad.php and the (2) ad parameter to pfriendly.php.

8.5AI Score

0.001EPSS

2008-03-10 11:44 PM