返回 CVE 瀏覽器

CVE-2008-7114

MEDIUM

6.8

CVSS Severity Score

EPSS Score0.0610%

EPSS Percentile30.31th

Published2009年8月28日

Last Modified2026年4月23日

Vulnerability Description

SQL injection vulnerability in members_search.php in iFusion Services iFdate 2.0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the name field.

Affected Platforms (CPE)

📦

Ifusionservices

Ifdate

<= 2.0.3

References & Advisories

🔗 http://www.securityfocus.com/bid/30850

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/44668

🔗 https://www.exploit-db.com/exploits/6315

🔗 http://www.securityfocus.com/bid/30850

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/44668

🔗 https://www.exploit-db.com/exploits/6315

相關漏洞威脅

CVE-2007-271310.0

ifdate 2.x sends a redirect to the web browser but does not exit when administrative credentials are missing, which allows remote ...

CVE-2006-26645.8

Cross-site scripting (XSS) vulnerability in iFdate 1.2 allows remote attackers to inject arbitrary web script or HTML via the (1) ...

CVE-2008-014810.0

TUTOS 1.3 does not restrict access to php/admin/cmd.php, which allows remote attackers to execute arbitrary shell commands via the...

CVE-2008-015110.0

Heap-based buffer overflow in Foxit WAC Server 2.1.0.910, 2.0 Build 3503, and earlier allows remote attackers to cause a denial of...