VYPR
Vendor

Jshop E Commerce

Products
5
CVEs
5
Across products
7
Status
Private

Products

5

Recent CVEs

5
  • CVE-2009-3835Nov 2, 2009
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in the JShop (com_jshop) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the pid parameter in a product action to index.php.

  • CVE-2008-1624Apr 2, 2008
    risk 0.03cvss epss 0.03

    Directory traversal vulnerability in v2demo/page.php in Jshop Server 1.x through 2.x allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the xPage parameter.

  • CVE-2007-0232Jan 13, 2007
    risk 0.03cvss epss 0.03

    PHP remote file inclusion vulnerability in routines/fieldValidation.php in Jshop Server 1.3 allows remote attackers to execute arbitrary PHP code via a URL in the jssShopFileSystem parameter.

  • CVE-2004-1738Dec 31, 2004
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in page.php in JShop allows remote attackers to inject arbitrary web script or HTML via the xPage parameter.

  • CVE-2004-2084Feb 7, 2004
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in search.php in JShop E-Commerce Server allows remote attackers to inject arbitrary web script or HTML via the xSearch parameter.