2.7.2

DATE	CVE	VULNERABILITY TITLE	RISK
2010-05-25	CVE-2010-2042	SQL Injection vulnerability in Shopex Ecshop 2.7.2 SQL injection vulnerability in search.php in ECShop 2.7.2 allows remote attackers to execute arbitrary SQL commands via the encode parameter. network low complexity shopex CWE-89	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.