Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
viart shop vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2008-3369
SQL injection vulnerability in products_rss.php in ViArt Shop 3.5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the category_id parameter.
Viart Viart Shop 2.5.5
Viart Viart Shop 3.3
Viart Viart Shop
Viart Viart Shop 3.2
Viart Viart Shop 3.3.2
1 EDB exploit
7.5
CVSSv2
CVE-2006-2980
SQL injection vulnerability in block_forum_topic_new.php in ViArt Shop Free 2.5.5, and possibly other distributions including Light, Standard, and Enterprise, might allow remote malicious users to execute arbitrary SQL commands via unknown vectors, probably involving the forum_id...
Viart Ltd Viart Shop Free 2.5.5 Enterprise
Viart Ltd Viart Shop Free 2.5.5 Light
Viart Ltd Viart Shop Free 2.5.5 Standard
6.8
CVSSv2
CVE-2007-6347
PHP remote file inclusion vulnerability in blocks/block_site_map.php in ViArt (1) CMS 3.3.2, (2) HelpDesk 3.3.2, (3) Shop Evaluation 3.3.2, and (4) Shop Free 3.3.2 allows remote malicious users to execute arbitrary PHP code via a URL in the root_folder_path parameter. NOTE: some ...
Viart Helpdesk 3.3.2
Viart Shop Evaluation 3.3.2
Viart Cms 3.3.2
Viart Shop Free 3.3.2
1 EDB exploit
4.3
CVSSv2
CVE-2008-6757
Cross-site scripting (XSS) vulnerability in manuals_search.php in ViArt Shop (aka Shopping Cart) 3.5 allows remote malicious users to inject arbitrary web script or HTML via the manuals_search parameter.
Viart Viart Shop 3.5
1 EDB exploit
6.8
CVSSv2
CVE-2008-6758
Cross-site request forgery (CSRF) vulnerability in cart_save.php in ViArt Shop (aka Shopping Cart) 3.5 allows remote malicious users to hijack the authentication of arbitrary users for requests that conduct persistent cross-site scripting (XSS) attacks via the cart_name parameter...
Viart Viart Shop 3.5
1 EDB exploit
4.3
CVSSv2
CVE-2008-6759
ViArt Shop (aka Shopping Cart) 3.5 allows remote malicious users to obtain sensitive information via a URL in the POST_DATA parameter to manuals_search.php, which reveals the installation path in an error message.
Viart Viart Shop 3.5
4.3
CVSSv2
CVE-2008-6760
ViArt Shop (aka Shopping Cart) 3.5 allows remote malicious users to obtain sensitive information via an unauthenticated add and save action for a shopping cart in cart_save.php, which reveals the SQL table names in an error message, related to code that mishandles the lack of a u...
Viart Viart Shop 3.5
5
CVSSv2
CVE-2008-6765
ViArt Shop (aka Shopping Cart) 3.5 allows remote malicious users to access the contents of an arbitrary shopping cart via a modified cart_name parameter.
Viart Viart Shop 3.5
1 EDB exploit
5
CVSSv2
CVE-2008-6766
cart_save.php in ViArt Shop (aka Shopping Cart) 3.5 allows remote malicious users to cause a denial of service (excessive shopping carts) via a flood of requests.
Viart Viart Shop 3.5
5
CVSSv2
CVE-2007-5463
ideal_process.php in the iDEAL payment module in ViArt Shop 3.3 beta and previous versions might allow remote malicious users to obtain the pathname for certificate and key files via an "iDEAL transaction", possibly involving fopen error messages for nonexistent files, ...
Viart Shop
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »