Vulnerabilities > Bigware > Bigware Shop > 2.1.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-10-08 | CVE-2012-5317 | SQL Injection vulnerability in Bigware Shop 2.0/2.1.4 SQL injection vulnerability in main_bigware_43.php in Bigware Shop before 2.1.5 allows remote attackers to execute arbitrary SQL commands via the lastname parameter in a process action. | 7.5 |