E-topbiz : Security Vulnerabilities, CVEs, CVSS score >= 4
E-topbiz Link Back Checker 1 allows remote attackers to bypass authentication and gain administrative access by setting the auth cookie to "admin."
Max CVSS
7.5
EPSS Score
5.00%
Published
2009-02-26
Updated
2017-09-29
SQL injection vulnerability in admin/admin.php in E-topbiz Slide Popups 1.0 allows remote attackers to execute arbitrary SQL commands via the password parameter.
Max CVSS
7.5
EPSS Score
0.13%
Published
2009-02-24
Updated
2017-09-29
SQL injection vulnerability in view.php in E-topbiz AdManager 4 allows remote attackers to execute arbitrary SQL commands via the group parameter.
Max CVSS
7.5
EPSS Score
0.06%
Published
2009-02-24
Updated
2017-09-29
SQL injection vulnerability in admin/admin_catalog.php in e-topbiz Number Links 1 Php Script allows remote attackers to execute arbitrary SQL commands via the id parameter in an edit action.
Max CVSS
7.5
EPSS Score
0.09%
Published
2008-12-31
Updated
2017-09-29
SQL injection vulnerability in admin/login.php in E-topbiz Online Store 1.0 allows remote attackers to execute arbitrary SQL commands via the user parameter (aka username field). NOTE: some of these details are obtained from third party information.
Max CVSS
7.5
EPSS Score
0.14%
Published
2008-12-31
Updated
2017-09-29
SQL injection vulnerability in index.php in E-topbiz Online Store 1.0 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.
Max CVSS
7.5
EPSS Score
0.14%
Published
2008-12-31
Updated
2017-09-29
SQL injection vulnerability in admin.php in E-topbiz Domain Shop 2 allows remote attackers to execute arbitrary SQL commands via the passfromform parameter.
Max CVSS
7.5
EPSS Score
0.15%
Published
2008-12-12
Updated
2017-09-29
SQL injection vulnerability in members/mail.php in E-topbiz Online Dating 3 1.0 allows remote authenticated users to execute arbitrary SQL commands via the mail_id parameter in a veiw action.
Max CVSS
6.5
EPSS Score
0.07%
Published
2008-08-06
Updated
2017-09-29
SQL injection vulnerability in product_detail.php in ShopCart DX allows remote attackers to execute arbitrary SQL commands via the pid parameter.
Max CVSS
7.5
EPSS Score
1.13%
Published
2008-07-28
Updated
2017-09-29
SQL injection vulnerability in tops_top.php in E-topbiz Million Pixels 3 allows remote attackers to execute arbitrary SQL commands via the id_cat parameter.
Max CVSS
7.5
EPSS Score
0.20%
Published
2008-07-17
Updated
2017-09-29
SQL injection vulnerability in out.php in E-topbiz Link ADS 1 allows remote attackers to execute arbitrary SQL commands via the linkid parameter.
Max CVSS
7.5
EPSS Score
0.09%
Published
2008-06-26
Updated
2017-09-29
SQL injection vulnerability in adclick.php in E-topbiz Viral DX 1 2.07 allows remote attackers to execute arbitrary SQL commands via the bannerid parameter.
Max CVSS
7.5
EPSS Score
0.09%
Published
2008-06-26
Updated
2017-09-29
12 vulnerabilities found