Vulnerabilities > Supernet > Supernet Shop > High
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2009-02-20 | CVE-2008-6204 | SQL Injection vulnerability in Supernet Shop Multiple SQL injection vulnerabilities in SuperNET Shop 1.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) id parameter to secure/admin/guncelle.asp, (2) kulad and sifre parameters to secure/admin/giris.asp, and (3) username and password to secure/admin/default.asp. | 7.5 |