A-shop : Security Vulnerabilities, CVEs,
Multiple SQL injection vulnerabilities in A-shop 0.70 and earlier allow remote attackers to execute arbitrary SQL commands via unspecified vectors.
Max CVSS
7.5
EPSS Score
0.14%
Published
2007-07-21
Updated
2017-09-29
Directory traversal vulnerability in admin/filebrowser.asp in A-shop 0.70 and earlier, and possibly 0.71, allows remote attackers to delete arbitrary files via unspecified filename references in the delfiles parameter.
Max CVSS
6.4
EPSS Score
0.40%
Published
2007-07-21
Updated
2017-09-29
2 vulnerabilities found