cpe:/a:e-topbiz:shopcart_dx CVE-2008-3346 2008-07-28T12:41:00.000-04:00 2017-09-28T21:31:38.147-04:00 7.5 NETWORK LOW NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-07-29T10:31:00.000-04:00 ALLOWS_OTHER_ACCESS BID 30337 SECUNIA 31156 SREASON 4045 EXPLOIT-DB 6114 VUPEN ADV-2008-2161 XF shopcartdx-productdetail-sql-injection(43945) SQL injection vulnerability in product_detail.php in ShopCart DX allows remote attackers to execute arbitrary SQL commands via the pid parameter.