Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2007-6424

Malware in sbrugna...

7.5CVSS6.4AI score0.02031EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-2147

Malware in sbrugna...

7.5CVSS6.4AI score0.01211EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2002-2146

Malware in sbrugna...

5CVSS6.4AI score0.01685EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/21 8:34 p.m.9 views

CVE-2002-2167

Directory traversal vulnerability in functionfoot1.inc.php for Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to read arbitrary files via .. dot dot sequences terminated by a null character in the $designNo variable, which is part of an "include" function call...

5CVSS7.1AI score0.01685EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:34 p.m.11 views

CVE-2002-2168

SQL injection vulnerability in Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to execute arbitrary SQL queries via various programs including functiondescribeitem1.inc.php...

7.5CVSS8.7AI score0.01211EPSS
Exploits0References1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.28 views

123tkShop 0.9.1 - Remote Authentication Bypass Vulnerability

No description provided by source. By Michael Brooks Vulnerability:Sql Injection Software:123tkShop Homepage:http://sourceforge.net/projects/my123tkshop/ Affects Version 0.9.1. An attacker can gain Administrative rights with this authentication bypass exploit:...

7.1AI score
Exploits0
NVD
NVD
added 2007/12/20 12:46 a.m.15 views

CVE-2007-6458

SQL injection vulnerability in shop/mainfile.php in 123tkShop 0.9.1 allows remote attackers to execute arbitrary SQL commands via a base64-encoded value of the admin parameter to shop/admin.php...

7.5CVSS8.3AI score0.02031EPSS
Exploits1References3
Prion
Prion
added 2007/12/20 12:46 a.m.12 views

Sql injection

SQL injection vulnerability in shop/mainfile.php in 123tkShop 0.9.1 allows remote attackers to execute arbitrary SQL commands via a base64-encoded value of the admin parameter to shop/admin.php...

7.5CVSS9AI score0.02031EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2007/12/20 12:0 a.m.48 views

CVE-2007-6458

CVE-2007-6458 describes an SQL injection in 123tkShop 0.9.1. The vulnerability is in shop/mainfile.php, enabling remote attackers to inject SQL through a base64-encoded value of the admin parameter sent to shop/admin.php. This stems from improper handling of the admin parameter, allowing arbitrar...

7.5CVSS8.3AI score0.02031EPSS
Exploits1References3Affected Software1
seebug.org
seebug.org
added 2007/12/15 12:0 a.m.21 views

123tkShop 0.9.1 Remote Authentication Bypass Vulnerability

No description provided by source. By Michael Brooks Vulnerability:Sql Injection Software:123tkShop Homepage:http://sourceforge.net/projects/my123tkshop/ Affects Version 0.9.1. An attacker can gain Administrative rights with this authentication bypass exploit:...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2007/12/14 12:0 a.m.19 views

123tkShop 0.9.1 - Remote Authentication Bypass

123tkShop 0.9.1 - Remote Authentication Bypass By Michael Brooks Vulnerability:Sql Injection Software:123tkShop Homepage:http://sourceforge.net/projects/my123tkshop/ Affects Version 0.9.1. An attacker can gain Administrative rights with this authentication bypass exploit:...

0.6AI score
Exploits0
0day.today
0day.today
added 2007/12/14 12:0 a.m.21 views

123tkShop 0.9.1 Remote Authentication Bypass Vulnerability

Exploit for unknown platform in category web applications ========================================================== 123tkShop 0.9.1 Remote Authentication Bypass Vulnerability ========================================================== By Michael Brooks Vulnerability:Sql Injection Software:123tkSh...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/12/14 12:0 a.m.51 views

123tkShop 0.9.1 - Remote Authentication Bypass

By Michael Brooks Vulnerability:Sql Injection Software:123tkShop Homepage:http://sourceforge.net/projects/my123tkshop/ Affects Version 0.9.1. An attacker can gain Administrative rights with this authentication bypass exploit:...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2005/11/16 9:17 p.m.23 views

CVE-2002-2168

SQL injection vulnerability in Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to execute arbitrary SQL queries via various programs including functiondescribeitem1.inc.php...

8.2AI score0.01211EPSS
Exploits0References4
Cvelist
Cvelist
added 2005/11/16 9:17 p.m.21 views

CVE-2002-2167

Directory traversal vulnerability in functionfoot1.inc.php for Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to read arbitrary files via .. dot dot sequences terminated by a null character in the $designNo variable, which is part of an "include" function call...

6.7AI score0.01685EPSS
Exploits0References3
CVE
CVE
added 2005/11/16 9:17 p.m.54 views

CVE-2002-2168

CVE-2002-2168 describes a SQL injection vulnerability in Thorsten Korner 123tkShop before 0.3.1 . The vulnerability allows remote attackers to execute arbitrary SQL queries via various programs, including function_describe_item1.inc.php . The connected documents confirm the same description acros...

7.5CVSS8.6AI score0.01211EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2005/11/16 9:17 p.m.41 views

CVE-2002-2167

The CVE-2002-2167 issue affects Thorsten Korner’s 123tkShop prior to version 0.3.1. A directory traversal flaw exists in function_foot_1.inc.php: a crafted designNo value can terminate with a null character, enabling remote attackers to read arbitrary files via include() calls. Impact is read acc...

5CVSS7.1AI score0.01685EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2002/12/31 5:0 a.m.14 views

CVE-2002-2167

Directory traversal vulnerability in functionfoot1.inc.php for Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to read arbitrary files via .. dot dot sequences terminated by a null character in the $designNo variable, which is part of an "include" function call...

5CVSS6.7AI score0.01685EPSS
Exploits0References3
NVD
NVD
added 2002/12/31 5:0 a.m.13 views

CVE-2002-2168

SQL injection vulnerability in Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to execute arbitrary SQL queries via various programs including functiondescribeitem1.inc.php...

7.5CVSS8.2AI score0.01211EPSS
Exploits0References4
Rows per page
Query Builder