Lucene search
E-store Kit-2 Security Vulnerabilities
cve
SQL injection vulnerability in viewdetails.php in MagicScripts E-Store Kit-1, E-Store Kit-2, E-Store Kit-1 Pro PayPal Edition, and E-Store Kit-2 PayPal Edition allows remote attackers to execute arbitrary SQL commands via the pid...
9.3AI Score
0.001EPSS
2008-08-11 11:41 PM
23
cve
PHP remote file inclusion vulnerability in catalog.php in E-Store Kit-2 PayPal Edition allows remote attackers to execute arbitrary PHP code by modifying the menu and main parameters to reference a URL on a remote web server that contains the...
8.4AI Score
0.006EPSS
2005-05-02 04:00 AM
26
cve
Cross-site scripting (XSS) vulnerability in downloadform.php in E-Store Kit-2 PayPal Edition allows remote attackers to inject arbitrary web script or HTML via the txn_id...
6.3AI Score
0.002EPSS
2005-03-26 05:00 AM
21