Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown
CVE-2008-2278
Disclosure Date: May 16, 2008 (last updated October 04, 2023)
SQL injection vulnerability in browseproject.php in Freelance Auction Script 1.0 allows remote attackers to execute arbitrary SQL commands via the pid parameter in a pdetails action.
0
Attacker Value
Unknown
CVE-2008-2279
Disclosure Date: May 16, 2008 (last updated October 04, 2023)
Freelance Auction Script 1.0 stores user passwords in plaintext in the tbl_users table, which allows attackers to gain privileges by reading the table.
0
