Vendor

Datetopia

Products

CVEs

Across products

Status

Private

Products

CVE	Vendor / Product	Risk	CVSS	EPSS	Published	Description
CVE-2009-3359	Datetopia Match Agency Biz	0.03	—	0.01	Sep 24, 2009	Multiple cross-site scripting (XSS) vulnerabilities in Match Agency BiZ 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) important parameter to edit_profile.php and (2) pid parameter to report.php.
CVE-2009-3355	Datetopia Buy Dating Site	0.03	—	0.03	Sep 24, 2009	Cross-site scripting (XSS) vulnerability in profile.php in Datetopia Buy Dating Site 1.0 allows remote attackers to inject arbitrary web script or HTML via the s_r parameter.
CVE-2006-3283	Datetopia Dating Agent Pro	0.00	—	0.00	Jun 28, 2006	SQL injection vulnerability in Dating Agent PRO 4.7.1 allows remote attackers to execute arbitrary SQL commands via the (1) pid parameter in picture.php, (2) mid parameter in mem.php, and the (3) sex and (4) relationship parameters in search.php.
CVE-2006-3284	Datetopia Dating Agent Pro	0.00	—	0.00	Jun 28, 2006	Cross-site scripting (XSS) vulnerability in Dating Agent PRO 4.7.1 allows remote attackers to inject arbitrary web script or HTML via the login parameter in (1) webmaster/index.php and (2) search.php.
CVE-2006-3282	Datetopia Dating Agent Pro	0.00	—	0.00	Jun 28, 2006	requirements.php in Dating Agent PRO 4.7.1 allows remote attackers to obtain sensitive information via a direct request, which calls the phpinfo function.

CVE-2009-3359Sep 24, 2009
Datetopia
Match Agency Biz
risk 0.03cvss —epss 0.01
Multiple cross-site scripting (XSS) vulnerabilities in Match Agency BiZ 1.0 allow remote attackers to inject arbitrary web script or HTML via the (1) important parameter to edit_profile.php and (2) pid parameter to report.php.
CVE-2009-3355Sep 24, 2009
Datetopia
Buy Dating Site
risk 0.03cvss —epss 0.03
Cross-site scripting (XSS) vulnerability in profile.php in Datetopia Buy Dating Site 1.0 allows remote attackers to inject arbitrary web script or HTML via the s_r parameter.
CVE-2006-3283Jun 28, 2006
Datetopia
Dating Agent Pro
risk 0.00cvss —epss 0.00
SQL injection vulnerability in Dating Agent PRO 4.7.1 allows remote attackers to execute arbitrary SQL commands via the (1) pid parameter in picture.php, (2) mid parameter in mem.php, and the (3) sex and (4) relationship parameters in search.php.
CVE-2006-3284Jun 28, 2006
Datetopia
Dating Agent Pro
risk 0.00cvss —epss 0.00
Cross-site scripting (XSS) vulnerability in Dating Agent PRO 4.7.1 allows remote attackers to inject arbitrary web script or HTML via the login parameter in (1) webmaster/index.php and (2) search.php.
CVE-2006-3282Jun 28, 2006
Datetopia
Dating Agent Pro
risk 0.00cvss —epss 0.00
requirements.php in Dating Agent PRO 4.7.1 allows remote attackers to obtain sensitive information via a direct request, which calls the phpinfo function.