VYPR
Unrated severityNVD Advisory· Published Oct 8, 2012· Updated Jun 16, 2026

CVE-2012-5317

CVE-2012-5317

Description

SQL injection vulnerability in main_bigware_43.php in Bigware Shop before 2.1.5 allows remote attackers to execute arbitrary SQL commands via the lastname parameter in a process action.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Bigware/Shop3 versions
    cpe:2.3:a:bigware:bigware_shop:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:bigware:bigware_shop:*:*:*:*:*:*:*:*range: <=2.1.4
    • cpe:2.3:a:bigware:bigware_shop:2.0:*:*:*:*:*:*:*
    • (no CPE)range: <2.1.5

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.