Vulnerabilities > Uniwin

DATE	CVE	VULNERABILITY TITLE	RISK
2008-10-27	CVE-2008-4746	SQL Injection vulnerability in Uniwin Ecart Professional 2.0.17 Multiple SQL injection vulnerabilities in Uniwin eCart Professional 2.0.17 allow remote attackers to execute arbitrary SQL commands via unspecified vectors to (1) search.asp and (2) cartUtil.asp. network low complexity uniwin CWE-89	7.5
2008-10-27	CVE-2008-4745	Cross-Site Scripting vulnerability in Uniwin Ecart Professional 2.0.17 Cross-site scripting (XSS) vulnerability in emailFriend.asp in Uniwin eCart Professional 2.0.17 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. network uniwin CWE-79	4.3
2008-02-04	CVE-2008-0558	Cross-Site Scripting vulnerability in Uniwin Ecart Professional Cross-site scripting (XSS) vulnerability in Uniwin eCart Professional before 2.0.16 allows remote attackers to inject arbitrary web script or HTML via the rp parameter to cartView.asp and unspecified other components. network uniwin CWE-79	4.3

Vulnerabilities > Uniwin {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Uniwin"}]}