Aewebworks: >> Aedating >> 4.0 Security Vulnerabilities
Multiple PHP remote file inclusion vulnerabilities in AEDating 4.1, and possibly earlier versions, allow remote attackers to execute arbitrary PHP code via a URL in the dir[inc] parameter in (1) inc/design.inc.php or (2) inc/admin_design.inc.php.
CVSS Score
7.5
EPSS Score
0.188
Published
2006-09-19
SQL injection vulnerability in search_result.php in AEwebworks aeDating Script 4.0 and earlier allows remote attackers to execute arbitrary SQL statements via the Country parameter.
CVSS Score
7.5
EPSS Score
0.003
Published
2005-09-20