Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2002-2168 | 1 Thorsten Korner | 1 123tkshop | 2024-11-20 | 7.5 HIGH | N/A |
SQL injection vulnerability in Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to execute arbitrary SQL queries via various programs including function_describe_item1.inc.php. | |||||
CVE-2002-2167 | 1 Thorsten Korner | 1 123tkshop | 2024-11-20 | 5.0 MEDIUM | N/A |
Directory traversal vulnerability in function_foot_1.inc.php for Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to read arbitrary files via .. (dot dot) sequences terminated by a null character in the $designNo variable, which is part of an "include" function call. |