Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Softbiz Subscribe
Filtered by product Web Hosting Directory Script
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2008-2087 1 Softbiz 1 Web Hosting Directory Script 2024-02-28 6.8 MEDIUM N/A
SQL injection vulnerability in search_result.php in Softbiz Web Host Directory Script, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the host_id parameter, a different vector than CVE-2005-3817.
CVE-2005-3817 1 Softbiz 1 Web Hosting Directory Script 2024-02-28 7.5 HIGH N/A
Multiple SQL injection vulnerabilities in Softbiz Web Host Directory Script 1.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) cid parameter in search_result.php, (2) sbres_id parameter in review.php, (3) cid parameter in browsecats.php, (4) h_id parameter in email.php, and (5) an unspecified parameter to the search module.