E-topbiz Link Back Checker 1 allows remote attackers to bypass authentication and gain administrative access by setting the auth cookie to "admin."
Max CVSS
7.5
EPSS Score
5.00%
Published
2009-02-26
Updated
2017-09-29
SQL injection vulnerability in admin/admin.php in E-topbiz Slide Popups 1.0 allows remote attackers to execute arbitrary SQL commands via the password parameter.
Max CVSS
7.5
EPSS Score
0.13%
Published
2009-02-24
Updated
2017-09-29
SQL injection vulnerability in view.php in E-topbiz AdManager 4 allows remote attackers to execute arbitrary SQL commands via the group parameter.
Max CVSS
7.5
EPSS Score
0.06%
Published
2009-02-24
Updated
2017-09-29
SQL injection vulnerability in admin/admin_catalog.php in e-topbiz Number Links 1 Php Script allows remote attackers to execute arbitrary SQL commands via the id parameter in an edit action.
Max CVSS
7.5
EPSS Score
0.09%
Published
2008-12-31
Updated
2017-09-29
SQL injection vulnerability in admin/login.php in E-topbiz Online Store 1.0 allows remote attackers to execute arbitrary SQL commands via the user parameter (aka username field). NOTE: some of these details are obtained from third party information.
Max CVSS
7.5
EPSS Score
0.14%
Published
2008-12-31
Updated
2017-09-29
SQL injection vulnerability in index.php in E-topbiz Online Store 1.0 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.
Max CVSS
7.5
EPSS Score
0.14%
Published
2008-12-31
Updated
2017-09-29
SQL injection vulnerability in admin.php in E-topbiz Domain Shop 2 allows remote attackers to execute arbitrary SQL commands via the passfromform parameter.
Max CVSS
7.5
EPSS Score
0.15%
Published
2008-12-12
Updated
2017-09-29
SQL injection vulnerability in product_detail.php in ShopCart DX allows remote attackers to execute arbitrary SQL commands via the pid parameter.
Max CVSS
7.5
EPSS Score
0.94%
Published
2008-07-28
Updated
2017-09-29
SQL injection vulnerability in tops_top.php in E-topbiz Million Pixels 3 allows remote attackers to execute arbitrary SQL commands via the id_cat parameter.
Max CVSS
7.5
EPSS Score
0.20%
Published
2008-07-17
Updated
2017-09-29
SQL injection vulnerability in out.php in E-topbiz Link ADS 1 allows remote attackers to execute arbitrary SQL commands via the linkid parameter.
Max CVSS
7.5
EPSS Score
0.09%
Published
2008-06-26
Updated
2017-09-29
SQL injection vulnerability in adclick.php in E-topbiz Viral DX 1 2.07 allows remote attackers to execute arbitrary SQL commands via the bannerid parameter.
Max CVSS
7.5
EPSS Score
0.09%
Published
2008-06-26
Updated
2017-09-29
11 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!