Vulnerability Details CVE-2008-3490
SQL injection vulnerability in members/mail.php in E-topbiz Online Dating 3 1.0 allows remote authenticated users to execute arbitrary SQL commands via the mail_id parameter in a veiw action.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 36.2%
CVSS Severity
CVSS v2 Score 6.5
References
- http://secunia.com/advisories/31346
- http://securityreason.com/securityalert/4113
- http://www.securityfocus.com/bid/30503
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44165
- https://www.exploit-db.com/exploits/6184
- http://secunia.com/advisories/31346
- http://securityreason.com/securityalert/4113
- http://www.securityfocus.com/bid/30503
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44165
- https://www.exploit-db.com/exploits/6184
Products affected by CVE-2008-3490
-
cpe:2.3:a:e-topbiz:online_dating:3.1.0