Vulnerabilities > Shopex

DATE CVE VULNERABILITY TITLE RISK
2021-06-16 CVE-2020-22204 SQL Injection vulnerability in Shopex Ecshop 2.7.6
SQL Injection in ECShop 2.7.6 via the goods_number parameter to flow.php.
network
low complexity
shopex CWE-89
critical
9.8
2021-06-16 CVE-2020-22205 SQL Injection vulnerability in Shopex Ecshop 3.0
SQL Injection in ECShop 3.0 via the id parameter to admin/shophelp.php.
network
low complexity
shopex CWE-89
critical
9.8
2021-06-16 CVE-2020-22206 SQL Injection vulnerability in Shopex Ecshop 3.0
SQL Injection in ECShop 3.0 via the aid parameter to admin/affiliate_ck.php.
network
low complexity
shopex CWE-89
critical
9.8