Vulnerabilities > Shopex > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-02-11 CVE-2023-0783 Unspecified vulnerability in Shopex Ecshop 4.1.5
A vulnerability was found in EcShop 4.1.5.
network
low complexity
shopex
critical
 9.8
9.8
2021-12-02 CVE-2021-43679 SQL Injection vulnerability in Shopex Ecshop 2.7.3
ecshop v2.7.3 is affected by a SQL injection vulnerability in shopex\ecshop\upload\api\client\api.php.
network
low complexity
shopex CWE-89
critical
 9.8
9.8
2021-06-16 CVE-2020-22204 SQL Injection vulnerability in Shopex Ecshop 2.7.6
SQL Injection in ECShop 2.7.6 via the goods_number parameter to flow.php.
network
low complexity
shopex CWE-89
critical
 9.8
9.8
2021-06-16 CVE-2020-22205 SQL Injection vulnerability in Shopex Ecshop 3.0
SQL Injection in ECShop 3.0 via the id parameter to admin/shophelp.php.
network
low complexity
shopex CWE-89
critical
 9.8
9.8
2021-06-16 CVE-2020-22206 SQL Injection vulnerability in Shopex Ecshop 3.0
SQL Injection in ECShop 3.0 via the aid parameter to admin/affiliate_ck.php.
network
low complexity
shopex CWE-89
critical
 9.8
9.8