2 results (0.006 seconds)
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2002-2167
https://notcve.org/view.php?id=CVE-2002-2167
31 Dec 2002 — Directory traversal vulnerability in function_foot_1.inc.php for Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to read arbitrary files via .. (dot dot) sequences terminated by a null character in the $designNo variable, which is part of an "include" function call. • http://online.securityfocus.com/archive/1/282404 •
CVSS: 9.8EPSS: 0%CPEs: 2EXPL: 0CVE-2002-2168
https://notcve.org/view.php?id=CVE-2002-2168
31 Dec 2002 — SQL injection vulnerability in Thorsten Korner 123tkShop before 0.3.1 allows remote attackers to execute arbitrary SQL queries via various programs including function_describe_item1.inc.php. • http://online.securityfocus.com/archive/1/282404 •