VYPR

Iboutique

by Netartmedia

CVEs (5)

  • CVE-2010-5020Nov 2, 2011
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in index.php in NetArt Media iBoutique 4.0 allows remote attackers to execute arbitrary SQL commands via the page parameter.

  • CVE-2010-0804Mar 2, 2010
    risk 0.03cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in index.php in iBoutique 4.0 allows remote attackers to inject arbitrary web script or HTML via the key parameter in a products action.

  • CVE-2008-4354Sep 30, 2008
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in the products module in NetArt Media iBoutique 4.0 allows remote attackers to execute arbitrary SQL commands via the cat parameter to index.php.

  • CVE-2010-3466Sep 17, 2010
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in index.php in the hosted_signup module in NetArt Media iBoutique.MALL 1.2 allows remote attackers to inject arbitrary web script or HTML via the tmpl parameter. NOTE: some of these details are obtained from third party information.

  • CVE-2006-2791Jun 3, 2006
    risk 0.00cvss epss 0.02

    Directory traversal vulnerability in index.php in iBoutique.MALL and possibly iBoutique allows remote attackers to read arbitrary files via ".." sequences in the function parameter.