Shopwind Schwachstellen

Zeitverlauf

Version

3.4.05
3.4.15
3.4.25
4.01
4.11

Massnahmen

Official Fix0
Temporary Fix0
Workaround0
Unavailable0
Not Defined7

Ausnutzbarkeit

High0
Functional0
Proof-of-Concept1
Unproven0
Not Defined6

Zugriffsart

Not Defined0
Physical0
Local0
Adjacent2
Network5

Authentisierung

Not Defined0
High0
Low6
None1

Benutzeraktivität

Not Defined0
Required2
None5

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤42
≤52
≤61
≤72
≤80
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤42
≤52
≤61
≤72
≤80
≤90
≤100

VulDB

≤10
≤20
≤30
≤43
≤51
≤61
≤72
≤80
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤71
≤80
≤90
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤61
≤70
≤80
≤90
≤100

Hersteller

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploit 0-day

<1k3
<2k3
<5k1
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploit heute

<1k7
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploitmarktvolumen

🔴 CTI Aktivitäten

Affected Versions (11): 3.4, 3.4.1, 3.4.2, 3.4.3, 4.0, 4.1, 4.2, 4.3, 4.4, 4.5, 4.6

VeröffentlichtBaseTempSchwachstelle0dayHeuteAusMasCTICVE
21.02.20245.65.3Shopwind Installation DefaultController.php actionCreate erweiterte Rechte$0-$5k$0-$5kProof-of-ConceptNot Defined0.04CVE-2024-1705
09.11.20224.84.8Shopwind Page.php Cross Site Scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-43321
12.05.20223.53.5Shopwind Cross Site Scripting$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-30057
11.05.20226.36.3Shopwind Database.php SQL Injection$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-30452
11.05.20226.36.3Shopwind Database.php Privilege Escalation$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-30453
11.05.20224.64.6Shopwind DbController.php Denial of Service$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-30059
11.05.20223.53.5Shopwind DbController.php Information Disclosure$0-$5k$0-$5kNot DefinedNot Defined0.00CVE-2022-30058

ZurückÜbersichtWeiter

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!