Max CVSS | 7.8 | Min CVSS | 7.5 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2006-2474 | 7.5 |
SQL injection vulnerability in lshop.cgi in Cosmoshop 8.11.106 and earlier allows remote attackers to execute arbitrary SQL commands via the artnum parameter.
|
18-10-2018 - 16:40 | 19-05-2006 - 17:02 | |
CVE-2006-2475 | 7.8 |
Directory traversal vulnerability in (1) edit_mailtexte.cgi and (2) bestmail.cgi in Cosmoshop 8.11.106 and earlier allows remote administrators to read arbitrary files via ".." sequences in the file parameter.
|
18-10-2018 - 16:40 | 19-05-2006 - 17:02 |