Known Vulnerabilities for products from Shopex
Listed below are 15 of the newest known vulnerabilities associated with the vendor "Shopex".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2024-1530 json | 8.8 - HIGH | 2024-02-15 | 2024-03-12 | |
| CVE-2023-39112 json | ECShop v4.1.16 contains an arbitrary file deletion vulnerability in the Admin Panel. | 6.5 - MEDIUM | 2023-08-04 | 2023-09-08 |
| CVE-2023-26823 json | ** REJECT ** DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2023-0783. Reason: This record is a duplicate of CVE-2023-0783. Note... | Not Provided | 2023-03-07 | 2023-11-07 |
| CVE-2023-5294 json | A vulnerability has been found in ECshop 4.1.1 and classified as critical. Affected by this vulnerability is an unknown funct... | 8.8 - HIGH | 2023-09-29 | 2023-11-07 |
| CVE-2023-5293 json | A vulnerability, which was classified as critical, was found in ECshop 4.1.5. Affected is an unknown function of the file /ad... | 6.5 - MEDIUM | 2023-09-29 | 2023-11-07 |
| CVE-2023-1185 json | A vulnerability, which was classified as problematic, was found in ECshop up to 4.1.8. This affects an unknown part of the co... | 8.8 - HIGH | 2023-03-06 | 2023-11-07 |
| CVE-2023-1184 json | A vulnerability, which was classified as problematic, has been found in ECshop up to 4.1.8. Affected by this issue is some un... | 8.8 - HIGH | 2023-03-06 | 2023-11-07 |
| CVE-2023-0783 json | A vulnerability was found in EcShop 4.1.5. It has been classified as critical. This affects an unknown part of the file /ecsh... | 9.8 - CRITICAL | 2023-02-11 | 2023-11-07 |
| CVE-2021-43679 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2021-12-02 | 2021-12-03 |
| CVE-2021-41460 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-06-28 | 2022-07-07 |
| CVE-2020-22206 json | SQL Injection in ECShop 3.0 via the aid parameter to admin/affiliate_ck.php. | 9.8 - CRITICAL | 2021-06-16 | 2021-06-21 |
| CVE-2020-22205 json | SQL Injection in ECShop 3.0 via the id parameter to admin/shophelp.php. | 9.8 - CRITICAL | 2021-06-16 | 2021-06-21 |
| CVE-2020-22204 json | SQL Injection in ECShop 2.7.6 via the goods_number parameter to flow.php. . | 9.8 - CRITICAL | 2021-06-16 | 2021-06-21 |
| CVE-2020-20640 json | Cross Site Scripting (XSS) vulnerability in ECShop 4.0 due to security filtering issues, in the user.php file, we can use the... | 6.1 - MEDIUM | 2021-06-28 | 2021-07-01 |
| CVE-2010-2042 json | SQL injection vulnerability in search.php in ECShop 2.7.2 allows remote attackers to execute arbitrary SQL commands via the e... | 7.5 - HIGH | 2010-05-25 | 2010-05-26 |