Filtered by vendor Brooky Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2003-0586 1 Brooky 1 Estore 2024-11-20 N/A
Brooky eStore 1.0.1 through 1.0.2b allows remote attackers to obtain sensitive path information via a direct HTTP request to settings.inc.php.
CVE-2003-0585 1 Brooky 1 Estore 2024-11-20 N/A
SQL injection vulnerability in login.asp of Brooky eStore 1.0.1 through 1.0.2b allows remote attackers to bypass authentication and execute arbitrary SQL code via the (1) user or (2) pass parameters.