Vulnerabilities > Etoshop
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2013-12-24 | CVE-2013-7216 | SQL Injection vulnerability in Etoshop Classifieds Creator 2.0 Multiple SQL injection vulnerabilities in Classifieds Creator 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) ID parameter to demo/classifieds/product.asp, or (2) UserID or (3) Password field to demo/classifieds/admin.asp. | 7.5 |
2013-12-21 | CVE-2013-7193 | SQL Injection vulnerability in Etoshop C2C Forward Auction Creator 2.0 Multiple SQL injection vulnerabilities in C2C Forward Auction Creator 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) pa parameter to auction/asp/list.asp, or the (2) UserID or (3) Password to auction/casp/admin.asp. | 7.5 |
2013-12-21 | CVE-2013-7192 | SQL Injection vulnerability in Etoshop Dynamic BIZ Website Builder Quickweb 1.0 Multiple SQL injection vulnerabilities in Dynamic Biz Website Builder (QuickWeb) allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to apps/news-events/newdetail.asp, or the (2) UserID or (3) Password to login.asp. | 7.5 |
2005-07-05 | CVE-2005-2135 | SQL-Injection vulnerability in Etoshop Dynamic BIZ Website Builder Quickweb 1.0 SQL injection vulnerability in verify.asp in EtoShop Dynamic Biz Website Builder (QuickWeb) 1.0 allows remote attackers to execute arbitrary SQL commands via the (1) T1 or (2) T2 parameters. | 7.5 |