CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Bigware: Security Vulnerabilities

CVE-2012-5317

SQL injection vulnerability in main_bigware_43.php in Bigware Shop before 2.1.5 allows remote attackers to execute arbitrary SQL commands via the lastname parameter in a process action.

CVSS Score

7.5

EPSS Score

0.005

Published

2012-10-08

CVE-2008-0498

SQL injection vulnerability in main_bigware_53.tpl.php in Bigware Shop 2.0 allows remote attackers to execute arbitrary SQL commands via the pollid parameter in a results action to main_bigware_53.php.

CVSS Score

7.5

EPSS Score

0.004

Published

2008-01-30

Page 1

Vulnerabilities

Vulnerable Software

Bigware: Security Vulnerabilities

Products

Pricing

Contact Us