Every CVE whose affected-product data names Likeshop, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2024-34949 — CVSS 8.2 (high): SQL injection vulnerability in Likeshop before 2.5.7 allows attackers to run abitrary SQL commands via the function OrderLogic::getOrderList…
CVE-2024-0352 — CVSS 7.3 (high): A vulnerability classified as critical was found in Likeshop up to 2.5.7.20210311. This vulnerability affects the function…
CVE-2024-24027 — CVSS 7.2 (high): SQL Injection vulnerability in Likeshop before 2.5.7 allows attackers to run abitrary SQL commands via the function DistributionMemberLogic…
CVE-2024-24028 — CVSS 5.9 (medium): Server Side Request Forgery (SSRF) vulnerability in Likeshop before 2.5.7 allows attackers to view sensitive information via the avatar…
CVE-2024-41432 — CVSS 5.3 (medium): An IP Spoofing vulnerability has been discovered in Likeshop up to 2.5.7.20210811. This issue allows an attacker to replace their real IP…
CVE-2024-5766 — CVSS 2.4 (low): A vulnerability was found in Likeshop up to 2.5.7 and classified as problematic. This issue affects some unknown processing of the file…