CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Quadcomm: >> Q-Shop >> 3.0 Security Vulnerabilities

CVE-2008-6258

SQL injection vulnerability in users.asp in QuadComm Q-Shop 3.0, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the (1) UserID and (2) Pwd parameters. NOTE: this might be related to CVE-2004-2108.

CVSS Score

7.5

EPSS Score

0.004

Published

2009-02-24

Page 1

Vulnerabilities

Vulnerable Software

Quadcomm: >> Q-Shop >> 3.0 Security Vulnerabilities

Products

Pricing

Contact Us