Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shop-script shop-script 2.0 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2008-0158
Directory traversal vulnerability in index.php in Shop-Script 2.0 and possibly other versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the aux_page parameter.
Shop-script Shop-script 2.0
1 EDB exploit
7.5
CVSSv2
CVE-2007-4933
Direct static code injection vulnerability in includes/admin/sub/conf_appearence.php in Shop-Script FREE 2.0 and previous versions allows remote malicious users to inject arbitrary PHP code into cfg/appearence.inc.php via a save_appearence action in admin.php, as demonstrated wit...
Shop-script Shop-script 2.0
1 EDB exploit
7.5
CVSSv2
CVE-2007-2331
PHP remote file inclusion vulnerability in cart.php in Shop-Script 2.0 allows remote malicious users to execute arbitrary PHP code via a URL in the lang_list parameter.
Shop-script Shop-script 2.0
7.5
CVSSv2
CVE-2007-4932
admin.php in Shop-Script FREE 2.0 and previous versions sends a redirect to the web browser but does not exit when administrative credentials are missing, which allows remote malicious users to access the admin panel.
Shop-script Shop-script
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started