GlobaldatingsoftwareCVEs & Vulnerabilities
4 CVEs affecting Globaldatingsoftware products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
4 CVEs→ All vendors
Most Affected Products
premiumdatingscript 4
CVE-2021-41697MEDIUM
A reflected Cross Site Scripting (XSS) vulnerability exists in Premiumdatingscript 4.2.7.7 via the aerror_description parameter in assets/sources/instagram.php script.
9 Dec 2021
6.1
CVSS
CVE-2021-41696MEDIUM
An authentication bypass (account takeover) vulnerability exists in Premiumdatingscript 4.2.7.7 due to a weak password reset mechanism in requests\user.php.
9 Dec 2021
6.5
CVSS
CVE-2021-41695CRITICAL
An SQL Injection vulnerability exists in Premiumdatingscript 4.2.7.7 via the ip parameter in connect.php. .
9 Dec 2021
9.8
CVSS
CVE-2021-41694CRITICAL
An Incorrect Access Control vulnerability exists in Premiumdatingscript 4.2.7.7 via the password change procedure in requests\user.php.
9 Dec 2021
9.8
CVSS
← PrevPage 1 / 1Next →