Webasyst Llc Shop-script — known CVE vulnerabilities
Every CVE whose affected-product data names Webasyst Llc Shop-script, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2010-1462 — CVSS 10.0 (critical): Directory traversal vulnerability in WebAsyst Shop-Script FREE has unknown impact and attack vectors via the sub parameter.
CVE-2007-1855 — CVSS 7.5 (high): Multiple PHP remote file inclusion vulnerabilities in smarty/smarty_class.php in Shop-Script FREE allow remote attackers to execute…
CVE-2010-1463 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in WebAsyst Shop-Script FREE allow attackers to execute arbitrary SQL commands via the (1) add2cart…
CVE-2006-5566 — CVSS 5.0 (medium): CRLF injection vulnerability in premium/index.php in Shop-Script allows remote attackers to inject arbitrary HTTP headers and conduct HTTP…