Lucene search
K

15 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2004-2100

Malware in sbrugna...

7.5CVSS6.4AI score0.03197EPSS
Exploits1References16
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2008-6228

Malware in sbrugna...

7.5CVSS6.4AI score0.00973EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-4839

Malware in sbrugna...

7.5CVSS6.4AI score0.05111EPSS
Exploits1References9
NVD
NVD
added 2009/02/24 6:30 p.m.24 views

CVE-2008-6258

SQL injection vulnerability in users.asp in QuadComm Q-Shop 3.0, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the 1 UserID and 2 Pwd parameters. NOTE: this might be related to CVE-2004-2108...

7.5CVSS8.3AI score0.00973EPSS
Exploits1References4
Prion
Prion
added 2009/02/24 6:30 p.m.21 views

Sql injection

SQL injection vulnerability in users.asp in QuadComm Q-Shop 3.0, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the 1 UserID and 2 Pwd parameters. NOTE: this might be related to CVE-2004-2108...

7.5CVSS8.8AI score0.03197EPSS
Exploits2References4Affected Software1
Cvelist
Cvelist
added 2009/02/24 6:0 p.m.32 views

CVE-2008-6259

Cross-site scripting XSS vulnerability in search.asp in QuadComm Q-Shop 3.0, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via the srkeys parameter...

5.8AI score0.01607EPSS
Exploits1References4
Cvelist
Cvelist
added 2009/02/24 6:0 p.m.28 views

CVE-2008-6258

SQL injection vulnerability in users.asp in QuadComm Q-Shop 3.0, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the 1 UserID and 2 Pwd parameters. NOTE: this might be related to CVE-2004-2108...

8.3AI score0.00973EPSS
Exploits1References4
CVE
CVE
added 2009/02/24 6:0 p.m.53 views

CVE-2008-6258

The CVE-2008-6258 entry describes an SQL injection vulnerability in QuadComm Q-Shop 3.0 (and possibly earlier) affecting users.asp, where the (1) UserID and (2) Pwd parameters allow remote attackers to execute arbitrary SQL commands. This is a classic input-based injection affecting the web appli...

7.5CVSS8.7AI score0.00973EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2009/02/24 6:0 p.m.45 views

CVE-2008-6259

CVE-2008-6259 describes a cross-site scripting (XSS) vulnerability in QuadComm Q-Shop 3.0 (search.asp) that allows an attacker to inject arbitrary script/HTML via the srkeys parameter. Affected product: QuadComm Q-Shop 3.0 and possibly earlier versions. Root cause: unsafeguarded handling of the s...

4.3CVSS6AI score0.01607EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2006/09/19 1:7 a.m.18 views

CVE-2006-4852

SQL injection vulnerability in browse.asp in QuadComm Q-Shop 3.5 allows remote attackers to execute arbitrary SQL commands via the OrderBy parameter...

7.5CVSS8.4AI score0.05111EPSS
Exploits1References8
CVE
CVE
added 2006/09/19 1:0 a.m.55 views

CVE-2006-4852

CVE-2006-4852 describes a SQL injection vulnerability in QuadComm Q-Shop 3.5, specifically in the browse.asp module where the OrderBy parameter can be abused to execute arbitrary SQL commands. Affected software: QuadComm Q-Shop 3.5 (browse.asp). Underlying cause: improper handling of the OrderBy ...

7.5CVSS8.8AI score0.05111EPSS
Exploits1References8Affected Software1
Cvelist
Cvelist
added 2006/09/19 1:0 a.m.21 views

CVE-2006-4852

SQL injection vulnerability in browse.asp in QuadComm Q-Shop 3.5 allows remote attackers to execute arbitrary SQL commands via the OrderBy parameter...

8.4AI score0.05111EPSS
Exploits1References8
Cvelist
Cvelist
added 2005/05/27 4:0 a.m.24 views

CVE-2004-2108

Multiple SQL injection vulnerabilities in QuadComm Q-Shop allow remote attackers to execute arbitrary SQL commands via certain parameters to 1 search.asp, 2 browse.asp, 3 details.asp, 4 showcat.asp, 5 users.asp, 6 addtomylist.asp, 7 modline.asp, 8 cart.asp, or 9 newuser.asp...

8.4AI score0.03197EPSS
Exploits1References15
NVD
NVD
added 2004/12/31 5:0 a.m.21 views

CVE-2004-2108

Multiple SQL injection vulnerabilities in QuadComm Q-Shop allow remote attackers to execute arbitrary SQL commands via certain parameters to 1 search.asp, 2 browse.asp, 3 details.asp, 4 showcat.asp, 5 users.asp, 6 addtomylist.asp, 7 modline.asp, 8 cart.asp, or 9 newuser.asp...

7.5CVSS8.4AI score0.03197EPSS
Exploits1References15
securityvulns
securityvulns
added 2004/01/23 12:0 a.m.35 views

[Full-Disclosure] QuadComm Q-Shop ASP Shopping Cart Software multiple security vulnerabilities

S-Quadra Advisory 2004-01-23 Topic: QuadComm Q-Shop ASP Shopping Cart Software multiple security vulnerabilities Severity: High Vendor URL: http://www.quadcomm.com Advisory URL: http://www.s-quadra.com/advisories/Adv-20040123.txt Release date: 23 Jan 2004 1. DESCRIPTION Q-Shop is a shopping cart...

0.5AI score
Exploits0
Rows per page
Query Builder