cpe:/a:turnkey_web_tools:sunshop_shopping_cart:4.0:rc_6 CVE-2007-4597 2007-08-30T14:17:00.000-04:00 2017-09-28T21:29:19.860-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2007-08-30T14:52:00.000-04:00 ALLOWS_OTHER_ACCESS BID 25445 OSVDB 38440 EXPLOIT-DB 4313 SQL injection vulnerability in index.php in TurnkeyWebTools SunShop Shopping Cart 4.0 RC 6 allows remote attackers to execute arbitrary SQL commands via the s[cid] parameter in a search_list action, a different vector than CVE-2007-2549.