RSS   Vulnerabilities for 'Php shop'   RSS

2009-02-26
 
CVE-2008-6296

 

 
admin.php in Maran PHP Shop allows remote attackers to bypass authentication and gain administrative access by setting the user cookie to "demo."

 
2008-11-03
 
CVE-2008-4880

CWE-89
 

 
SQL injection vulnerability in prodshow.php in Maran PHP Shop allows remote attackers to execute arbitrary SQL commands via the id parameter, a different vector than CVE-2008-4879.

 
 
CVE-2008-4879

CWE-89
 

 
SQL injection vulnerability in prod.php in Maran PHP Shop allows remote attackers to execute arbitrary SQL commands via the cat parameter, a different vector than CVE-2008-4880.

 

 >>> Vendor: Maran 3 Products
Php forum
Php blog
Php shop


Copyright 2024, cxsecurity.com

 

Back to Top