Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
MaranPhp Shop

3 matches found

CVE
CVEadded 2008/11/03 11:0 p.m.49 views

CVE-2008-4879

CVE-2008-4879 is an SQL injection in Maran PHP Shop: the vulnerable file is prod.php and the issue arises from the cat parameter, allowing remote attackers to execute arbitrary SQL commands. This is a distinct vector from CVE-2008-4880. Public exploits exist (e.g., Exploit-DB 6953). No remediatio...

7.5CVSS8.3AI score0.00793EPSS
CVE
CVEadded 2009/02/26 4:0 p.m.42 views

CVE-2008-6296

CVE-2008-6296 affects admin.php in Maran PHP Shop. The vulnerability allows remote attackers to bypass authentication and gain administrative access by setting the user cookie to “demo.” This is evidenced in sources like NVD (base score 7.5, HIGH) and corroborated by multiple listings. The connec...

7.5CVSS7.4AI score0.02259EPSS
CVE
CVEadded 2008/11/03 11:0 p.m.37 views

CVE-2008-4880

CVE-2008-4880 is a SQL injection vulnerability in Maran PHP Shop, specifically in prodshow.php where the id parameter is exploited to execute arbitrary SQL commands. The related CVE-2008-4879 affects prod.php via the cat parameter. The connected documents confirm the vulnerable components and vec...

7.5CVSS8.3AI score0.00793EPSS