CVE-2008-3136

SQL injection vulnerability in catalogue.php in AShop Deluxe 4.x allows remote attackers to execute arbitrary SQL commands via the cat parameter.
SQL Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 35%
Common Weakness Enumeration
References
http://secunia.com/advisories/30902
http://www.securityfocus.com/bid/30022
https://exchange.xforce.ibmcloud.com/vulnerabilities/43537
https://www.exploit-db.com/exploits/5976
http://secunia.com/advisories/30902
http://www.securityfocus.com/bid/30022
https://exchange.xforce.ibmcloud.com/vulnerabilities/43537
https://www.exploit-db.com/exploits/5976