CVE-2008-2872
CVE-2008-2872 describes an SQL injection in default.asp of sHibby sHop 2.2 and earlier. The vulnerability exists in the sayfa parameter, allowing remote attackers to execute arbitrary SQL commands. Exploitation is feasible over the network without authentication (per CVE metrics), with potential ...