Vulnerabilities > Whorl LTD

DATE CVE VULNERABILITY TITLE RISK
2009-11-02 CVE-2009-3835 SQL Injection vulnerability in Whorl LTD Jshop
SQL injection vulnerability in the JShop (com_jshop) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the pid parameter in a product action to index.php.
network
low complexity
whorl-ltd joomla CWE-89
7.5
2008-04-02 CVE-2008-1624 Path Traversal vulnerability in Whorl LTD Jshop Server 1/2
Directory traversal vulnerability in v2demo/page.php in Jshop Server 1.x through 2.x allows remote attackers to include and execute arbitrary local files via a ..
network
low complexity
whorl-ltd CWE-22
7.5