Vulnerabilities > Quadcomm > Q Shop > 3.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-02-24 | CVE-2008-6258 | SQL Injection vulnerability in Quadcomm Q-Shop 3.0 SQL injection vulnerability in users.asp in QuadComm Q-Shop 3.0, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the (1) UserID and (2) Pwd parameters. | 7.5 |