Show filters
5 Total Results
Displaying 1-5 of 5
Sort by:
Attacker Value
Unknown
CVE-2009-4430
Disclosure Date: December 28, 2009 (last updated October 04, 2023)
SQL injection vulnerability in index.php in VirtueMart 1.0 allows remote attackers to execute arbitrary SQL commands via the product_id parameter in a shop.product_details shop.flypage action.
0
Attacker Value
Unknown
CVE-2008-7204
Disclosure Date: September 11, 2009 (last updated October 04, 2023)
Cross-site request forgery (CSRF) vulnerability in VirtueMart 1.0.13a and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.
0
Attacker Value
Unknown
CVE-2008-7205
Disclosure Date: September 11, 2009 (last updated October 04, 2023)
Unspecified vulnerability in the product view functionality in VirtueMart 1.0.13a and earlier allows remote attackers to read arbitrary files via vectors related to a template file.
0
Attacker Value
Unknown
CVE-2006-6945
Disclosure Date: January 19, 2007 (last updated October 04, 2023)
SQL injection vulnerability in Virtuemart 1.0.7 allows remote attackers to execute arbitrary SQL commands via unspecified vectors, probably related to (1) Itemid, (2) product_id, and category_id parameters as handled in virtuemart_parser.php.
0
Attacker Value
Unknown
CVE-2007-0376
Disclosure Date: January 19, 2007 (last updated October 04, 2023)
Cross-site scripting (XSS) vulnerability in Virtuemart 1.0.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
0
