rakhisoftware CVE Vulnerabilities & CVE List (3)

Products (CPE): — CVEs: 3

rakhisoftware vulnerability overview

Aggregates CVE and security vulnerability intelligence across all rakhisoftware-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.

Historical issues mainly involve vendor risk sql injection, vendor risk cross-site scripting, and vendor risk path handling and related problems; some flaws may lead to vendor impact session compromise.

Vulnerability distribution trend (last 24 months)

CVE	Summary	Source	Max CVSS	EPSS %	Published	Updated
CVE-2008-6279	RakhiSoftware Price Comparison Script (aka Shopping Cart) allows remote attackers to obtain sensitive information via an invalid PHPSESSID cookie, which reveals the installation path in an error message.	[email protected]	7.8	2.06%	2009-02-25	2026-04-23
CVE-2008-6278	Multiple cross-site scripting (XSS) vulnerabilities in product.php in RakhiSoftware Price Comparison Script (aka Shopping Cart) allow remote attackers to inject arbitrary web script or HTML via the (1) category_id and (2) subcategory_id parameters.	[email protected]	4.3	1.32%	2009-02-25	2026-04-23
CVE-2008-6277	SQL injection vulnerability in product.php in RakhiSoftware Price Comparison Script (aka Shopping Cart) allows remote attackers to execute arbitrary SQL commands via the subcategory_id parameter.	[email protected]	7.5	0.51%	2009-02-25	2026-04-23

cvelogic Threat Intelligence