CVE-2003-0509 in eShopinfo

Summary

SQL injection vulnerability in Cyberstrong eShop 4.2 and earlier allows remote attackers to steal authentication information and gain privileges via the ProductCode parameter in (1) 10expand.asp, (2) 10browse.asp, and (3) 20review.asp.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

07/03/2003

Disclosure

08/07/2003

Moderation

VulDB entry created

Entries

VDB-20666 (1)

CPE

ready

CWE

CWE-89 (Confirmed)

Exploit

Download

CVSS

7.3

EPSS

0.05791

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2003-0509
NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-0509
CVE Details	https://www.cvedetails.com/cve/CVE-2003-0509/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!