Vulnerabilities (CVE)

Filtered by vendor A-shop Subscribe
Filtered by product A-shop
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2007-3937 1 A-shop 1 A-shop 2024-11-21 7.5 HIGH N/A
Multiple SQL injection vulnerabilities in A-shop 0.70 and earlier allow remote attackers to execute arbitrary SQL commands via unspecified vectors.
CVE-2007-3936 1 A-shop 1 A-shop 2024-11-21 6.4 MEDIUM N/A
Directory traversal vulnerability in admin/filebrowser.asp in A-shop 0.70 and earlier, and possibly 0.71, allows remote attackers to delete arbitrary files via unspecified filename references in the delfiles parameter.