Vulnerabilities > Lighthouse Development
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-08-21 | CVE-2007-4439 | Remote File Include vulnerability in Squirrelcart Popup_Window.PHP PHP remote file inclusion vulnerability in popup_window.php in Squirrelcart 1.x.x and earlier allows remote attackers to execute arbitrary PHP code via a URL in the site_isp_root parameter, probably related to cart.php. | 7.5 |
| 2005-05-02 | CVE-2005-0962 | SQL Injection vulnerability in Lighthouse Development Squirrelcart 1.5.5 SQL injection vulnerability in index.php for Lighthouse Squirrelcart allows remote attackers to execute arbitrary SQL commands via the (1) crn parameter in a show action or (2) rn parameter in a show_detail action. | 7.5 |