Every CVE whose affected-product data names Quadcomm Q-shop, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2004-2108 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in QuadComm Q-Shop allow remote attackers to execute arbitrary SQL commands via certain parameters…
CVE-2006-4852 — CVSS 7.5 (high): SQL injection vulnerability in browse.asp in QuadComm Q-Shop 3.5 allows remote attackers to execute arbitrary SQL commands via the OrderBy…
CVE-2008-6258 — CVSS 7.5 (high): SQL injection vulnerability in users.asp in QuadComm Q-Shop 3.0, and possibly earlier, allows remote attackers to execute arbitrary SQL…
CVE-2004-2109 — CVSS 6.8 (medium): Multiple cross-site scripting (XSS) vulnerabilities in (1) imagezoom.asp or (2) recommend.asp in Q-Shop allow remote attackers to execute…
CVE-2008-6259 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in search.asp in QuadComm Q-Shop 3.0, and possibly earlier, allows remote attackers to inject…