Unrated severityNVD Advisory· Published Aug 7, 2003· Updated Apr 16, 2026

CVE-2003-0509

Description

SQL injection vulnerability in Cyberstrong eShop 4.2 and earlier allows remote attackers to steal authentication information and gain privileges via the ProductCode parameter in (1) 10expand.asp, (2) 10browse.asp, and (3) 20review.asp.

Affected products

Cyberstrong/Eshop
cpe:2.3:a:cyberstrong:eshop:*:*:*:*:*:*:*:*
Range: <=4.2

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

marc.infonvd
secunia.com/advisories/9165nvd
securitytracker.com/idnvd
www.osvdb.org/10098nvd
www.osvdb.org/10099nvd
www.osvdb.org/10100nvd
www.securityfocus.com/bid/14101nvd
www.securityfocus.com/bid/14103nvd
www.securityfocus.com/bid/14112nvd
exchange.xforce.ibmcloud.com/vulnerabilities/12485nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.005
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000