MidnightBSD

Advisories for viart_ltd

CVE-2006-2980 HIGH

SQL injection vulnerability in block_forum_topic_new.php in ViArt Shop Free 2.5.5, and possibly other distributions including Light, Standard, and Enterprise, might allow remote attackers to execute arbitrary SQL commands via unknown vectors, probably involving the forum_id parameter.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
viart_ltd viart_shop_free 2.5.5_standard
viart_ltd viart_shop_free 2.5.5_enterprise
viart_ltd viart_shop_free 2.5.5_light