Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2007-6424

Malware in sbrugna...

7.5CVSS6.4AI score0.02031EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-2147

Malware in sbrugna...

7.5CVSS6.4AI score0.01211EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2002-2146

Malware in sbrugna...

5CVSS6.4AI score0.01685EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/21 8:34 p.m.9 views

CVE-2002-2167

Directory traversal vulnerability in functionfoot1.inc.php for Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to read arbitrary files via .. dot dot sequences terminated by a null character in the $designNo variable, which is part of an "include" function call...

5CVSS7.1AI score0.01685EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:34 p.m.11 views

CVE-2002-2168

SQL injection vulnerability in Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to execute arbitrary SQL queries via various programs including functiondescribeitem1.inc.php...

7.5CVSS8.7AI score0.01211EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.28 views

123tkShop 0.9.1 - Remote Authentication Bypass Vulnerability

No description provided by source. By Michael Brooks Vulnerability:Sql Injection Software:123tkShop Homepage:http://sourceforge.net/projects/my123tkshop/ Affects Version 0.9.1. An attacker can gain Administrative rights with this authentication bypass exploit:...

7.1AI score
Exploits0
NVD
NVD
added 2007/12/20 12:46 a.m.15 views

CVE-2007-6458

SQL injection vulnerability in shop/mainfile.php in 123tkShop 0.9.1 allows remote attackers to execute arbitrary SQL commands via a base64-encoded value of the admin parameter to shop/admin.php...

7.5CVSS8.3AI score0.02031EPSS
Exploits1References3
Prion
Prion
added 2007/12/20 12:46 a.m.12 views

Sql injection

SQL injection vulnerability in shop/mainfile.php in 123tkShop 0.9.1 allows remote attackers to execute arbitrary SQL commands via a base64-encoded value of the admin parameter to shop/admin.php...

7.5CVSS9AI score0.02031EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2007/12/20 12:0 a.m.48 views

CVE-2007-6458

CVE-2007-6458 describes an SQL injection in 123tkShop 0.9.1. The vulnerability is in shop/mainfile.php, enabling remote attackers to inject SQL through a base64-encoded value of the admin parameter sent to shop/admin.php. This stems from improper handling of the admin parameter, allowing arbitrar...

7.5CVSS8.3AI score0.02031EPSS
Exploits1References3Affected Software1
seebug.org
seebug.org
added 2007/12/15 12:0 a.m.21 views

123tkShop 0.9.1 Remote Authentication Bypass Vulnerability

No description provided by source. By Michael Brooks Vulnerability:Sql Injection Software:123tkShop Homepage:http://sourceforge.net/projects/my123tkshop/ Affects Version 0.9.1. An attacker can gain Administrative rights with this authentication bypass exploit:...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/12/14 12:0 a.m.19 views

123tkShop 0.9.1 - Remote Authentication Bypass

123tkShop 0.9.1 - Remote Authentication Bypass By Michael Brooks Vulnerability:Sql Injection Software:123tkShop Homepage:http://sourceforge.net/projects/my123tkshop/ Affects Version 0.9.1. An attacker can gain Administrative rights with this authentication bypass exploit:...

0.6AI score
Exploits0
0day.today
0day.today
added 2007/12/14 12:0 a.m.21 views

123tkShop 0.9.1 Remote Authentication Bypass Vulnerability

Exploit for unknown platform in category web applications ========================================================== 123tkShop 0.9.1 Remote Authentication Bypass Vulnerability ========================================================== By Michael Brooks Vulnerability:Sql Injection Software:123tkSh...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/12/14 12:0 a.m.51 views

123tkShop 0.9.1 - Remote Authentication Bypass

By Michael Brooks Vulnerability:Sql Injection Software:123tkShop Homepage:http://sourceforge.net/projects/my123tkshop/ Affects Version 0.9.1. An attacker can gain Administrative rights with this authentication bypass exploit:...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2005/11/16 9:17 p.m.23 views

CVE-2002-2168

SQL injection vulnerability in Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to execute arbitrary SQL queries via various programs including functiondescribeitem1.inc.php...

8.2AI score0.01211EPSS
Exploits0References4
Cvelist
Cvelist
added 2005/11/16 9:17 p.m.21 views

CVE-2002-2167

Directory traversal vulnerability in functionfoot1.inc.php for Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to read arbitrary files via .. dot dot sequences terminated by a null character in the $designNo variable, which is part of an "include" function call...

6.7AI score0.01685EPSS
Exploits0References3
CVE
CVE
added 2005/11/16 9:17 p.m.54 views

CVE-2002-2168

CVE-2002-2168 describes a SQL injection vulnerability in Thorsten Korner 123tkShop before 0.3.1 . The vulnerability allows remote attackers to execute arbitrary SQL queries via various programs, including function_describe_item1.inc.php . The connected documents confirm the same description acros...

7.5CVSS8.6AI score0.01211EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2005/11/16 9:17 p.m.41 views

CVE-2002-2167

The CVE-2002-2167 issue affects Thorsten Korner’s 123tkShop prior to version 0.3.1. A directory traversal flaw exists in function_foot_1.inc.php: a crafted designNo value can terminate with a null character, enabling remote attackers to read arbitrary files via include() calls. Impact is read acc...

5CVSS7.1AI score0.01685EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2002/12/31 5:0 a.m.12 views

CVE-2002-2168

SQL injection vulnerability in Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to execute arbitrary SQL queries via various programs including functiondescribeitem1.inc.php...

7.5CVSS8.2AI score0.01211EPSS
Exploits0References4
NVD
NVD
added 2002/12/31 5:0 a.m.14 views

CVE-2002-2167

Directory traversal vulnerability in functionfoot1.inc.php for Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to read arbitrary files via .. dot dot sequences terminated by a null character in the $designNo variable, which is part of an "include" function call...

5CVSS6.7AI score0.01685EPSS
Exploits0References3
Rows per page
Query Builder