Vulnerabilities > Script Shop24

DATE CVE VULNERABILITY TITLE RISK
2010-08-25 CVE-2009-4993 Code Injection vulnerability in Script-Shop24 LM Starmail Paidmail 2.0
PHP remote file inclusion vulnerability in home.php in LM Starmail Paidmail 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the page parameter.
network
low complexity
script-shop24 CWE-94
7.5
2010-08-25 CVE-2009-4992 SQL Injection vulnerability in Script-Shop24 LM Starmail Paidmail 2.0
SQL injection vulnerability in paidbanner.php in LM Starmail Paidmail 2.0 allows remote attackers to execute arbitrary SQL commands via the ID parameter.
network
low complexity
script-shop24 CWE-89
7.5