Vulnerabilities (CVE)

Filtered by vendor Thorsten Korner Subscribe
Filtered by product 123tkshop
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2002-2168 1 Thorsten Korner 1 123tkshop 2024-11-20 7.5 HIGH N/A
SQL injection vulnerability in Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to execute arbitrary SQL queries via various programs including function_describe_item1.inc.php.
CVE-2002-2167 1 Thorsten Korner 1 123tkshop 2024-11-20 5.0 MEDIUM N/A
Directory traversal vulnerability in function_foot_1.inc.php for Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to read arbitrary files via .. (dot dot) sequences terminated by a null character in the $designNo variable, which is part of an "include" function call.