CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Thorsten Korner: >> 123tkshop Security Vulnerabilities

CVE-2002-2167

Directory traversal vulnerability in function_foot_1.inc.php for Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to read arbitrary files via .. (dot dot) sequences terminated by a null character in the $designNo variable, which is part of an "include" function call.

CVSS Score

5.0

EPSS Score

0.004

Published

2002-12-31

CVE-2002-2168

SQL injection vulnerability in Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to execute arbitrary SQL queries via various programs including function_describe_item1.inc.php.

CVSS Score

7.5

EPSS Score

0.005

Published

2002-12-31

Page 1

Vulnerabilities

Vulnerable Software

Thorsten Korner: >> 123tkshop Security Vulnerabilities

Products

Pricing

Contact Us