Vendor
Kansok Communications
Products
1
CVEs
2
Across products
2
Status
Private
Products
1- 2 CVEs
Recent CVEs
2| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2006-1706 | 0.03 | — | 0.02 | Apr 11, 2006 | Multiple SQL injection vulnerabilities in Shopweezle 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) itemID parameter to (a) login.php and (b) memo.php; and the (2) itemgr, (3) brandID, and (4) album parameters to (c) index.php. NOTE: this issue also produces resultant full path disclosure from invalid SQL queries. | ||
| CVE-2006-1707 | 0.00 | — | 0.00 | Apr 11, 2006 | index.php in Shopweezle 2.0 allows remote attackers to include arbitrary local files via the url parameter. |
- CVE-2006-1706Apr 11, 2006risk 0.03cvss —epss 0.02
Multiple SQL injection vulnerabilities in Shopweezle 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) itemID parameter to (a) login.php and (b) memo.php; and the (2) itemgr, (3) brandID, and (4) album parameters to (c) index.php. NOTE: this issue also produces resultant full path disclosure from invalid SQL queries.
- CVE-2006-1707Apr 11, 2006risk 0.00cvss —epss 0.00
index.php in Shopweezle 2.0 allows remote attackers to include arbitrary local files via the url parameter.