Sum Effect Software Digishop vulnerabilities
2 known vulnerabilities affecting sum_effect_software/digishop.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2006-5164P4MEDIUMCVSS 6.8PoCv4.02006-10-05
CVE-2006-5164 [MEDIUM] CVE-2006-5164: Multiple cross-site scripting (XSS) vulnerabilities in cart.php in Sum Effect Software digiSHOP 4.0
Multiple cross-site scripting (XSS) vulnerabilities in cart.php in Sum Effect Software digiSHOP 4.0 allow remote attackers to inject arbitrary web script or HTML via the (1) sortBy or (2) search parameters.
nvd
CVE-2005-4614P4HIGHCVSS 7.5≤ 3.1.172005-12-31
CVE-2005-4614 [HIGH] CVE-2005-4614: Multiple SQL injection vulnerabilities in digiSHOP 3.1.17 and earlier allow remote attackers to exec
Multiple SQL injection vulnerabilities in digiSHOP 3.1.17 and earlier allow remote attackers to execute arbitrary SQL commands or obtain the full installation path via (1) the c parameter in cart.php and (2) unspecified search module parameters.
nvd