The remote web server contains several PHP scripts that suffer from multiple vulnerabilities. Description : The remote host is running phpShop, a PHP-based e-commerce application and PHP development framework. Multiple vulnerabilities have been discovered in this product, which may allow a remote attacker to send arbitrary SQL commands to the remote database, or to insert malicious HTML and/or JavaScript into existing pages.

Upgrade to the latest version of phpShop.

• http://www.securityfocus.com/archive/1/350026

---

Updated on 2015-03-25