RSS   Vulnerabilities for 'Bigware shop'   RSS

2012-10-08
 
CVE-2012-5317

CWE-89
 

 
SQL injection vulnerability in main_bigware_43.php in Bigware Shop before 2.1.5 allows remote attackers to execute arbitrary SQL commands via the lastname parameter in a process action.

 
2008-01-30
 
CVE-2008-0498

 

 
SQL injection vulnerability in main_bigware_53.tpl.php in Bigware Shop 2.0 allows remote attackers to execute arbitrary SQL commands via the pollid parameter in a results action to main_bigware_53.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top