Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cosmoshop cosmoshop 8.10.78 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-2475
Directory traversal vulnerability in (1) edit_mailtexte.cgi and (2) bestmail.cgi in Cosmoshop 8.11.106 and previous versions allows remote administrators to read arbitrary files via ".." sequences in the file parameter.
Cosmoshop Cosmoshop
Cosmoshop Cosmoshop 8.10.78
NA
CVE-2006-2474
SQL injection vulnerability in lshop.cgi in Cosmoshop 8.11.106 and previous versions allows remote malicious users to execute arbitrary SQL commands via the artnum parameter.
Cosmoshop Cosmoshop
Cosmoshop Cosmoshop 8.10.78
1 EDB exploit
NA
CVE-2005-2784
SQL injection vulnerability in the login function for the administration login panel in cosmoshop 8.10.78 allows remote malicious users to execute arbitrary SQL commands and bypass authentication via unspecified vectors.
Cosmoshop Cosmoshop 8.10.78
NA
CVE-2005-2785
cosmoshop 8.10.78 and previous versions stores passwords in plaintext in the database, which allows local users to obtain sensitive information.
Cosmoshop Cosmoshop 8.10.78
NA
CVE-2005-2786
Directory traversal vulnerability in bestmail_edit.cgi in cosmoshop 8.10.78 and previous versions allows remote administrators to read arbitrary files via ".." sequences in the file parameter.
Cosmoshop Cosmoshop 8.10.78
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started