Activewebsoftwares Active Price Comparison vulnerabilities
3 known vulnerabilities affecting activewebsoftwares/active_price_comparison.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
HIGH3
Vulnerabilities
Page 1 of 1
CVE-2008-5974P3HIGHCVSS 7.5PoCv4.02009-01-27
CVE-2008-5974 [HIGH] CWE-89 CVE-2008-5974: Multiple SQL injection vulnerabilities in login.aspx in Active Price Comparison 4.0 allow remote att
Multiple SQL injection vulnerabilities in login.aspx in Active Price Comparison 4.0 allow remote attackers to execute arbitrary SQL commands via the (1) password and (2) username fields.
nvd
CVE-2008-5638P3HIGHCVSS 7.5PoCv4.02008-12-17
CVE-2008-5638 [HIGH] CWE-89 CVE-2008-5638: Multiple SQL injection vulnerabilities in Active Price Comparison 4 allow remote attackers to execut
Multiple SQL injection vulnerabilities in Active Price Comparison 4 allow remote attackers to execute arbitrary SQL commands via the (1) ProductID parameter to reviews.aspx or the (2) linkid parameter to links.asp.
nvd
CVE-2008-5975P3HIGHCVSS 7.5PoCv4.02009-01-27
CVE-2008-5975 [HIGH] CWE-89 CVE-2008-5975: SQL injection vulnerability in links.asp in Active Price Comparison 4.0 allows remote attackers to e
SQL injection vulnerability in links.asp in Active Price Comparison 4.0 allows remote attackers to execute arbitrary SQL commands via the linkid parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
nvd