Back to CVE Browser

CVE-2008-7114

MEDIUM

6.8

CVSS Severity Score

EPSS Score0.0610%

EPSS Percentile30.31th

PublishedAug 28, 2009

Last ModifiedApr 23, 2026

Vulnerability Description

SQL injection vulnerability in members_search.php in iFusion Services iFdate 2.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the name field.

Affected Platforms (CPE)

📦

Ifusionservices

Ifdate

<= 2.0.3

References & Advisories

🔗 http://www.securityfocus.com/bid/30850

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/44668

🔗 https://www.exploit-db.com/exploits/6315

🔗 http://www.securityfocus.com/bid/30850

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/44668

🔗 https://www.exploit-db.com/exploits/6315

Related Vulnerabilities

CVE-2007-271310.0

ifdate 2.x sends a redirect to the web browser but does not exit when administrative credentials are missing, which allows remote ...

CVE-2006-26645.8

Cross-site scripting (XSS) vulnerability in iFdate 1.2 allows remote attackers to inject arbitrary web script or HTML via the (1) ...

CVE-2008-665110.0

Static code injection vulnerability in edithistory.php in OxYProject OxYBox 0.85 allows remote attackers to inject arbitrary PHP c...

CVE-2008-034310.0

Unspecified vulnerability in the Oracle Spatial component in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, and 10.1.0.5 has u...