Vulnerabilities > Cfshopkart > CF Shopkart > 5.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-09-23 | CVE-2009-3309 | SQL Injection vulnerability in Cfshopkart CF Shopkart 5.4 SQL injection vulnerability in index.cfm in CF ShopKart 5.4 beta allows remote attackers to execute arbitrary SQL commands via the itemid parameter in a ViewDetails action, a different vector than CVE-2008-6320. | 7.5 |