Aggregates CVE and security vulnerability intelligence across all webshophun-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk sql injection, vendor risk cross-site scripting, and vendor risk path handling, with potential vendor impact file overwrite across vendor surface software deployment use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2015-2244 | Multiple cross-site scripting (XSS) vulnerabilities in Webshop hun 1.062S allow remote attackers to inject arbitrary web script or HTML via the (1) param, (2) center, (3) lap, (4) termid, or (5) nyelv_id parameter to index.php. | [email protected] | 4.3 | 1.94% | 2015-03-09 | 2026-05-06 |
| CVE-2015-2243 | Directory traversal vulnerability in Webshop hun 1.062S allows remote attackers to have unspecified impact via directory traversal sequences in the mappa parameter to index.php. | [email protected] | 7.5 | 3.08% | 2015-03-09 | 2026-05-06 |
| CVE-2015-2242 | Multiple SQL injection vulnerabilities in Webshop hun 1.062S allow remote attackers to execute arbitrary SQL commands via the (1) termid or (2) nyelv_id parameter to index.php. | [email protected] | 7.5 | 2.17% | 2015-03-09 | 2026-05-06 |