• info
• discussion
• exploit
• solution
• references

Dating Agent Pro CVE-2006-3283 SQL-Injection Vulnerability

Dating Agent Pro is prone to a sql-injection vulnerability. SQL injection vulnerability in Dating Agent PRO 4.7.1 allows remote attackers to execute arbitrary SQL commands via the (1) pid parameter in picture.php, (2) mid parameter in mem.php, and the (3) sex and (4) relationship parameters in search.php.