Turnkey Web Tools » Sunshop Shopping Cart : Security Vulnerabilities, CVEs, Published In 2007 (Sql injection)
SQL injection vulnerability in index.php in TurnkeyWebTools SunShop Shopping Cart 4.0 RC 6 allows remote attackers to execute arbitrary SQL commands via the s[cid] parameter in a search_list action, a different vector than CVE-2007-2549.
Max CVSS
7.5
EPSS Score
0.22%
Published
2007-08-30
Updated
2017-09-29
SQL injection vulnerability in index.php in TurnkeyWebTools SunShop Shopping Cart 4.0 allows remote attackers to execute arbitrary SQL commands via the (1) c or (2) quantity parameter.
Max CVSS
7.5
EPSS Score
0.82%
Published
2007-05-09
Updated
2018-10-16
2 vulnerabilities found