GCVE - cpe:2.3:a:activewebsoftwares:active_price

Approved changes feed: RSS · Atom

cpe:2.3:a:activewebsoftwares:active_price_comparison:4.0:*:*:*:*:*:*:*

part: a version: 4.0 update: *

Vendor	Activewebsoftwares (`f11ca31e-af82-5131-8708-9194844b8974`)
Product	Active Price Comparison (`5c9909ce-40a6-5b40-9cf3-0ab05f6f4e5b`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2008-5975`	vulnerable	2026-06-03 14:29:11.868243	Details available SQL injection vulnerability in links.asp in Active Price Comparison 4.0 allows remote attackers to execute arbitrary SQL commands via the linkid parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Published: 2009-01-27T01:00:00.000Z Updated: 2024-08-07T11:13:13.821Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/32550 https://exchange.xforce.ibmcloud.com/vulnerabilities/48318 http://www.vupen.com/english/advisories/2008/3296	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2008-5974`	vulnerable	2026-06-03 14:29:11.867944	Details available Multiple SQL injection vulnerabilities in login.aspx in Active Price Comparison 4.0 allow remote attackers to execute arbitrary SQL commands via the (1) password and (2) username fields. Published: 2009-01-27T01:00:00.000Z Updated: 2024-08-07T11:13:13.820Z Open on db.gcve.eu Reference links https://www.exploit-db.com/exploits/7283 http://secunia.com/advisories/32921 http://www.vupen.com/english/advisories/2008/3296 https://exchange.xforce.ibmcloud.com/vulnerabilities/46909	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2008-5638`	vulnerable	2026-06-03 14:29:10.289718	Details available Multiple SQL injection vulnerabilities in Active Price Comparison 4 allow remote attackers to execute arbitrary SQL commands via the (1) ProductID parameter to reviews.aspx or the (2) linkid parameter to links.asp. Published: 2008-12-17T17:00:00.000Z Updated: 2024-08-07T10:56:47.400Z Open on db.gcve.eu Reference links http://secunia.com/advisories/32896 https://www.exploit-db.com/exploits/7300 http://securityreason.com/securityalert/4768 https://exchange.xforce.ibmcloud.com/vulnerabilities/46908	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Active Price Comparison

PURL mappings

Vulnerability references

Contribute