Vulnerabilities (CVE)

Filtered by vendor Bigware Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-5317 1 Bigware 1 Bigware Shop 2024-11-21 7.5 HIGH N/A
SQL injection vulnerability in main_bigware_43.php in Bigware Shop before 2.1.5 allows remote attackers to execute arbitrary SQL commands via the lastname parameter in a process action.
CVE-2008-0498 1 Bigware 1 Bigware Shop 2024-11-21 7.5 HIGH N/A
SQL injection vulnerability in main_bigware_53.tpl.php in Bigware Shop 2.0 allows remote attackers to execute arbitrary SQL commands via the pollid parameter in a results action to main_bigware_53.php.