Vulnerabilities > Shopex > Ecshop > 2.7.6

DATE CVE VULNERABILITY TITLE RISK
2023-03-06 CVE-2023-1184 Unrestricted Upload of File with Dangerous Type vulnerability in Shopex Ecshop
A vulnerability, which was classified as problematic, has been found in ECshop up to 4.1.8.
network
low complexity
shopex CWE-434
8.8
8.8
2023-03-06 CVE-2023-1185 Unrestricted Upload of File with Dangerous Type vulnerability in Shopex Ecshop
A vulnerability, which was classified as problematic, was found in ECshop up to 4.1.8.
network
low complexity
shopex CWE-434
8.8
8.8
2021-06-16 CVE-2020-22204 SQL Injection vulnerability in Shopex Ecshop 2.7.6
SQL Injection in ECShop 2.7.6 via the goods_number parameter to flow.php.
network
low complexity
shopex CWE-89
7.5
7.5