6 matches found
EUVD-2006-5918
Malware in sbrugna...
CVE-2006-5935
SQL injection vulnerability in index.php in ShopSystems 4.0 and earlier allows remote attackers to execute arbitrary SQL commands via the sessid parameter...
CVE-2006-5935
SQL injection vulnerability in index.php in ShopSystems 4.0 and earlier allows remote attackers to execute arbitrary SQL commands via the sessid parameter...
CVE-2006-5935
CVE-2006-5935 is a SQL injection vulnerability in ShopSystems 4.0 and earlier . The flaw occurs in the application’s index.php where the sessid parameter enables remote attackers to execute arbitrary SQL commands. The NVD metrics indicate a base score 7.5 (HIGH) with network access, low attack co...
[MajorSecurity Advisory #33]ShopSystems - SQL Injection Issue
MajorSecurity Advisory 33ShopSystems - SQL Injection Issue Details ======= Product: ShopSystems Affected Version: = 4.0 Immune Version: none Security-Risk: moderated Remote-Exploit: yes Vendor-URL: http://www.shopsystems.biz Vendor-Status: informed Advisory-Status: published Credits ============...
ShopSystems Index.PHP SQL 注入漏洞
ShopSystems Index.PHP SQL 注入漏洞,因为它并没有足够的过滤用户提供数据,然后用它的SQL查询. 一个可以让攻击者利用此问题上妥协的申请,获得或更改资料,或者利用潜在脆弱执行基本数据库. ShopSystems ShopSystems 4.0版本与之前的存在此漏洞; 其他版本也可能受到影响. ShopSystems ShopSystems 4.0 [email protected]...