This page lists publicly disclosed CVE vulnerabilities affecting bigware bigware_shop (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2012-5317 | SQL injection vulnerability in main_bigware_43.php in Bigware Shop before 2.1.5 allows remote attackers to execute arbitrary SQL commands via the lastname parameter in a process action. | [email protected] | 7.5 | 0.48% | 2012-10-08 | 2026-04-29 |
| CVE-2008-0498 | SQL injection vulnerability in main_bigware_53.tpl.php in Bigware Shop 2.0 allows remote attackers to execute arbitrary SQL commands via the pollid parameter in a results action to main_bigware_53.php. | [email protected] | 7.5 | 0.49% | 2008-01-30 | 2026-04-23 |