Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shop-script shop-script 2.0 vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2007-4933
Direct static code injection vulnerability in includes/admin/sub/conf_appearence.php in Shop-Script FREE 2.0 and previous versions allows remote malicious users to inject arbitrary PHP code into cfg/appearence.inc.php via a save_appearence action in admin.php, as demonstrated wit...
Shop-script Shop-script 2.0
1 EDB exploit
505
VMScore
CVE-2008-0158
Directory traversal vulnerability in index.php in Shop-Script 2.0 and possibly other versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the aux_page parameter.
Shop-script Shop-script 2.0
1 EDB exploit
668
VMScore
CVE-2007-2331
PHP remote file inclusion vulnerability in cart.php in Shop-Script 2.0 allows remote malicious users to execute arbitrary PHP code via a URL in the lang_list parameter.
Shop-script Shop-script 2.0
755
VMScore
CVE-2007-4932
admin.php in Shop-Script FREE 2.0 and previous versions sends a redirect to the web browser but does not exit when administrative credentials are missing, which allows remote malicious users to access the admin panel.
Shop-script Shop-script
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started