Vulnerabilities > E Topbiz
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2009-02-26 | CVE-2008-6307 | Improper Authentication vulnerability in E-Topbiz Link Back Checker 1 E-topbiz Link Back Checker 1 allows remote attackers to bypass authentication and gain administrative access by setting the auth cookie to "admin." | 7.5 |
| 2009-02-24 | CVE-2008-6264 | SQL Injection vulnerability in E-Topbiz Slide Popups 1.0 SQL injection vulnerability in admin/admin.php in E-topbiz Slide Popups 1.0 allows remote attackers to execute arbitrary SQL commands via the password parameter. | 7.5 |
| 2009-02-24 | CVE-2008-6261 | SQL Injection vulnerability in E-Topbiz Admanager 4.0 SQL injection vulnerability in view.php in E-topbiz AdManager 4 allows remote attackers to execute arbitrary SQL commands via the group parameter. | 7.5 |
| 2008-12-31 | CVE-2008-5804 | SQL Injection vulnerability in E-Topbiz Number Links 1 PHP Script NIL SQL injection vulnerability in admin/admin_catalog.php in e-topbiz Number Links 1 Php Script allows remote attackers to execute arbitrary SQL commands via the id parameter in an edit action. | 7.5 |
| 2008-12-31 | CVE-2008-5803 | SQL Injection vulnerability in E-Topbiz Online Store 1.0 SQL injection vulnerability in admin/login.php in E-topbiz Online Store 1.0 allows remote attackers to execute arbitrary SQL commands via the user parameter (aka username field). | 7.5 |
| 2008-12-31 | CVE-2008-5802 | SQL Injection vulnerability in E-Topbiz Online Store 1.0 SQL injection vulnerability in index.php in E-topbiz Online Store 1.0 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter. | 7.5 |
| 2008-12-12 | CVE-2008-5488 | SQL Injection vulnerability in E-Topbiz Domain Shop 2 SQL injection vulnerability in admin.php in E-topbiz Domain Shop 2 allows remote attackers to execute arbitrary SQL commands via the passfromform parameter. | 7.5 |
| 2008-08-06 | CVE-2008-3490 | SQL Injection vulnerability in E-Topbiz Online Dating 3.1.0 SQL injection vulnerability in members/mail.php in E-topbiz Online Dating 3 1.0 allows remote authenticated users to execute arbitrary SQL commands via the mail_id parameter in a veiw action. | 6.5 |
| 2008-07-28 | CVE-2008-3346 | SQL Injection vulnerability in E-Topbiz Shopcart DX SQL injection vulnerability in product_detail.php in ShopCart DX allows remote attackers to execute arbitrary SQL commands via the pid parameter. | 7.5 |
| 2008-07-17 | CVE-2008-3204 | SQL Injection vulnerability in E-Topbiz Million Pixels 3 SQL injection vulnerability in tops_top.php in E-topbiz Million Pixels 3 allows remote attackers to execute arbitrary SQL commands via the id_cat parameter. | 7.5 |