Dating Agent Pro

CVEs (3)

CVE	Vendor / Product	CVSS	Published	Description
CVE-2006-3283	Datetopia Dating Agent Pro	—	Jun 28, 2006	SQL injection vulnerability in Dating Agent PRO 4.7.1 allows remote attackers to execute arbitrary SQL commands via the (1) pid parameter in picture.php, (2) mid parameter in mem.php, and the (3) sex and (4) relationship parameters in search.php.
CVE-2006-3282	Datetopia Dating Agent Pro	—	Jun 28, 2006	requirements.php in Dating Agent PRO 4.7.1 allows remote attackers to obtain sensitive information via a direct request, which calls the phpinfo function.
CVE-2006-3284	Datetopia Dating Agent Pro	—	Jun 28, 2006	Cross-site scripting (XSS) vulnerability in Dating Agent PRO 4.7.1 allows remote attackers to inject arbitrary web script or HTML via the login parameter in (1) webmaster/index.php and (2) search.php.

CVE-2006-3283Jun 28, 2006
Datetopia
Dating Agent Pro
risk 0.00cvss —epss 0.00
SQL injection vulnerability in Dating Agent PRO 4.7.1 allows remote attackers to execute arbitrary SQL commands via the (1) pid parameter in picture.php, (2) mid parameter in mem.php, and the (3) sex and (4) relationship parameters in search.php.
CVE-2006-3282Jun 28, 2006
Datetopia
Dating Agent Pro
risk 0.00cvss —epss 0.00
requirements.php in Dating Agent PRO 4.7.1 allows remote attackers to obtain sensitive information via a direct request, which calls the phpinfo function.
CVE-2006-3284Jun 28, 2006
Datetopia
Dating Agent Pro
risk 0.00cvss —epss 0.00
Cross-site scripting (XSS) vulnerability in Dating Agent PRO 4.7.1 allows remote attackers to inject arbitrary web script or HTML via the login parameter in (1) webmaster/index.php and (2) search.php.