Arcueidbrunestud

**Name of the Vulnerable Software and Affected Versions** code-projects Nero Social Networking Site version 1.0 **Description** A SQL injection issue exists due to manipulation of the `ID` argument in the `/acceptoffres.php` file. This manipulation occurs within an unknown function. The attack can be carried out remotely. The exploit has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** code-projects Nero Social Networking Site version 1.0 **Description** A flaw exists in code-projects Nero Social Networking Site 1.0, specifically within the /addfriend.php file. Manipulating the `ID` argument can lead to a SQL injection. This issue can be exploited remotely. The exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Nero Social Networking Site version 1.0 **Description** A security flaw exists in the /deletemessage.php file of Nero Social Networking Site. Manipulation of the `message id` argument can lead to SQL injection. This issue can be exploited remotely. The exploit is publicly available. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.