VYPR
Vendor

H.H.G Multistore

Products
1
CVEs
5
Across products
5
Status
Private

Products

1

Recent CVEs

5
  • CVE-2021-46448CriJan 28, 2022
    risk 0.64cvss 9.8epss 0.01

    H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/customers.php?page=1&cID.

  • CVE-2021-46446CriJan 28, 2022
    risk 0.64cvss 9.8epss 0.01

    H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/admin.php?module=admin_access_group_edit&aagID.

  • CVE-2021-46445CriJan 28, 2022
    risk 0.64cvss 9.8epss 0.01

    H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/categories.php?box_group_id.

  • CVE-2021-46444CriJan 28, 2022
    risk 0.64cvss 9.8epss 0.01

    H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/admin.php?module=admin_group_edit&agID.

  • CVE-2021-46447MedJan 28, 2022
    risk 0.35cvss 5.4epss 0.01

    A cross-site scripting (XSS) vulnerability in H.H.G Multistore v5.1.0 and below allows attackers to execute arbitrary web scripts or HTML via a crafted payload inserted into the State parameter under the Address Book module.