Vulnerability Details CVE-2008-5838
SQL injection vulnerability in search_results.php in E-Php Scripts E-Shop (aka E-Php Shopping Cart) Shopping Cart Script allows remote attackers to execute arbitrary SQL commands via the cid parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.0%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/31506
- http://www.securityfocus.com/bid/30692
- http://www.securityfocus.com/bid/31319
- http://www.vupen.com/english/advisories/2008/2507
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44472
- https://www.exploit-db.com/exploits/6398
- http://secunia.com/advisories/31506
- http://www.securityfocus.com/bid/30692
- http://www.securityfocus.com/bid/31319
- http://www.vupen.com/english/advisories/2008/2507
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44472
- https://www.exploit-db.com/exploits/6398
Products affected by CVE-2008-5838
-
cpe:2.3:a:ephpscripts:e-shop_shopping_cart:*