1 results (0.005 seconds)
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2009-0292 – SHOP-INET 4 - 'grid' SQL Injection
https://notcve.org/view.php?id=CVE-2009-0292
27 Jan 2009 — SQL injection vulnerability in show_cat2.php in SHOP-INET 4 allows remote attackers to execute arbitrary SQL commands via the grid parameter. Vulnerabilidad de inyección SQL en el archivo show_cat2.php en SHOP-INET 4, permite a los atacantes remotos ejecutar arbitrariamente comandos SQL a través del parámetro grid. • https://www.exploit-db.com/exploits/7874 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •