| Max CVSS | 10.0 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2007-3356 | 7.8 |
NetClassifieds Premium Edition allows remote attackers to obtain sensitive information via certain requests that reveal the path in an error message, related to the display_errors setting in (1) Common.php and (2) imageresizer.php, and (3) the use of
|
16-10-2018 - 16:48 | 22-06-2007 - 18:30 | |
| CVE-2007-3354 | 7.5 |
Multiple SQL injection vulnerabilities in NetClassifieds Premium Edition allow remote attackers to execute arbitrary SQL commands via the s_user_id parameter to ViewCat.php and other unspecified vectors. NOTE: the CatID/ViewCat.php, CatID/gallery.php
|
16-10-2018 - 16:48 | 22-06-2007 - 18:30 | |
| CVE-2007-3355 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in NetClassifieds Premium Edition allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
16-10-2018 - 16:48 | 22-06-2007 - 18:30 | |
| CVE-2007-3357 | 10.0 |
NetClassifieds Premium Edition does not use encryption for (1) stored passwords or (2) sensitive data, which might allow attackers to obtain information via certain vectors.
|
16-10-2018 - 16:48 | 22-06-2007 - 18:30 |