Pre Ads Portal <= 2.0 Remote SQL Injection Vulnerability
Exploit for unknown platform in category web...
7.1AI Score
Online Rental Property Script <= 4.5 (pid) SQL Injection Vulnerability
No description provided by...
7.1AI Score
ECHO_ADV_91$2008 [ECHO_ADV_91$2008] Online Rental Property Script <= 4.5 (pid) Blind Sql Injection Vulnerability Author : M.Hasran Addahroni Date : May, 5 th 2008 Location : Jakarta, Indonesia Web : http://advisories.echo.or.id/adv/adv91-K-159-2008.txt Critical...
-0.1AI Score
7.4AI Score
EPSS
Online Rental Property Script 4.5 - pid SQL Injection
Online Rental Property Script 4.5 - pid SQL...
0.2AI Score
Online Rental Property Script <= 4.5 (pid) SQL Injection Vulnerability
Exploit for unknown platform in category web...
7.1AI Score
-0.4AI Score
PHP Classifieds 6.20 - Multiple Cross-Site Scripting Authentication Bypass Vulnerabilities
PHP Classifieds 6.20 - Multiple Cross-Site Scripting Authentication Bypass...
0.5AI Score
PHP Classifieds 6.20 - Multiple Cross-Site Scripting / Authentication Bypass Vulnerabilities
...
7.4AI Score
Directory traversal vulnerability in payments/ideal_process.php in the iDEAL transaction handler in ViArt Shopping Cart allows remote attackers to have an unknown impact via directory traversal sequences in the filename parameter to the createCertFingerprint function. NOTE: this issue is disputed.....
6.9AI Score
0.008EPSS
Directory traversal vulnerability in payments/ideal_process.php in the iDEAL transaction handler in ViArt Shopping Cart allows remote attackers to have an unknown impact via directory traversal sequences in the filename parameter to the createCertFingerprint function. NOTE: this issue is disputed.....
6.7AI Score
0.008EPSS
Directory traversal vulnerability in payments/ideal_process.php in the iDEAL transaction handler in ViArt Shopping Cart allows remote attackers to have an unknown impact via directory traversal sequences in the filename parameter to the createCertFingerprint function. NOTE: this issue is disputed.....
6.7AI Score
0.008EPSS
Directory traversal vulnerability in payments/ideal_process.php in the iDEAL transaction handler in ViArt Shopping Cart allows remote attackers to have an unknown impact via directory traversal sequences in the filename parameter to the createCertFingerprint function. NOTE: this issue is disputed.....
6.7AI Score
0.008EPSS
Viart Shopping Cart Directory Transversal Vuln
Aria-Security Team Viart Shopping Cart Directory Transversal Vuln Vendor: http://www.viart.com/ POC: function createCertFingerprint($filename) { $fp = fopen($filename, "r"); http://target/path/payments/ideal_process.php Credits Goes To Aria-Security Team Thanks To Aura Regards, The-0utl4w...
2AI Score
[Aria-Security] Stuffed Tracker Multiple Cross-Site Scripting VULN
Aria-Security Team Viart Shopping Cart Directory Transversal Vuln Vendor: http://www.viart.com/ POC: function createCertFingerprint($filename) { $fp = fopen($filename, "r"); http://target/path/payments/ideal_process.php Credits Goes To Aria-Security Team Thanks To...
1.6AI Score
Nessus was able to identify the remote service by its banner or by looking at the error message it sends when it receives an HTTP...
7.4AI Score
Multiple unspecified vulnerabilities in Oracle E-Business Suite 11.5.10CU2 have unknown impact and attack vectors, related to (1) APPS04, (2) APPS05, and (3) APPS06 in (a) Oracle Application Object Library, (4) APPS07 in Oracle Customer Intelligence, (5) APPS08 in Oracle Payments, (7) APPS10 in...
6.4AI Score
0.011EPSS
Multiple unspecified vulnerabilities in Oracle E-Business Suite 11.5.10CU2 have unknown impact and attack vectors, related to (1) APPS04, (2) APPS05, and (3) APPS06 in (a) Oracle Application Object Library, (4) APPS07 in Oracle Customer Intelligence, (5) APPS08 in Oracle Payments, (7) APPS10 in...
6.4AI Score
0.011EPSS
Multiple unspecified vulnerabilities in Oracle E-Business Suite 11.5.10CU2 have unknown impact and attack vectors, related to (1) APPS04, (2) APPS05, and (3) APPS06 in (a) Oracle Application Object Library, (4) APPS07 in Oracle Customer Intelligence, (5) APPS08 in Oracle Payments, (7) APPS10 in...
6.8AI Score
0.011EPSS
Multiple unspecified vulnerabilities in Oracle E-Business Suite 11.5.10CU2 have unknown impact and attack vectors, related to (1) APPS04, (2) APPS05, and (3) APPS06 in (a) Oracle Application Object Library, (4) APPS07 in Oracle Customer Intelligence, (5) APPS08 in Oracle Payments, (7) APPS10 in...
6.4AI Score
0.011EPSS
GMTT Music Distro 1.2 XSS Exploit
-=[--------------------ADVISORY-------------------]=- GMTT Music Distro Author: CorryL [[email protected]] -=[-----------------------------------------------]=- -=[+] Application: GMTT Music Distro -=[+] Version: 1.2 -=[+] Vendor's URL: ...
0.2AI Score
-0.4AI Score
[Full-disclosure] Alibaba Alipay Remote Code Execute Vulnerability-0DAY
Alibaba Alipay Remote Code Execute Vulnerability by cocoruder(frankruder_at_hotmail.com) http://ruder.cdut.;et Summary: Alipay is China’s leading online payment service, and a division of Alibaba.com. It enables individuals and businesses to securely, easily and quickly send and receive payments...
0.4AI Score
-0.2AI Score
Pre Shopping Mall Homepage: http://www.preprojects.com/emall.asp Description: PRE SHOPPING MALL a power full ecommerce shopping mall solution. If you need to setup a online shop or shopping mall PRE SHOPPING MALL is your quickest solution. You can setup your Emall within few hours. Buy install and....
0.1AI Score
PPCal Shopping Cart XSS Vuln. discovered by : r0t Date: 15 dec. 2005 orginal advisory:http://pridels.blogspot.com/2005/12/ppcal-shopping-cart-xss.html vendor:http://www.paypalshoppingcart.org/ affected version:3.3.0 and prior Product Description: PPCal Shopping Cart allows integration and...
-0.2AI Score
ASPS Shopping Cart Professional and Lite XSS vuln
ASPS Shopping Cart Professional and Lite XSS vuln Vuln. dicovered by : r0t Date: 3 dec. 2005 Orginal advisory:http://pridels.blogspot.com/2005/12/asps-shopping-cart-professional-and.html Vendor:http://www.aspsolutions.com.au/ affected version: ASPS Shopping Cart Professional 2.9d and prior ASPS...
AI Score
Amazon Shop 5.0.0 XSS vuln. Vuln. dicovered by : r0t Date: 26 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/amazon-shop-500-xss-vuln.html Vendor:http://www.ghostscripter.com/amazon_shop.php affected version:5.0.0 and prior Product description: With Amazon Shop you can run your...
AI Score
PHP HANDICAPPER Multiple Vulnerability
DATE: 2/11/2005 AFFECTED PRODUCTS PHP HANDICAPPER http://www.phphandicapper.com OVERVIEW Out Of The Box Complete Website, Easily Automate Your Sports Picks / Sports Information Predictions. All sports - football,basketball,boxin g,baseball, college, pro etc. Offer your services like daily, weekly.....
0.6AI Score
-0.3AI Score
This plugin attempts to determine the presence of various common dirs on the remote web...
9.9CVSS
8.1AI Score
0.975EPSS
Portcullis Security Advisory 05-002 Spectrum Cash Receipting System Weak Password Encryption
Portcullis Security Advisory Vulnerable System: Spectrum Cash Receipting System Vulnerability Title: Spectrum Cash Receipting System Weak Password Protection Vulnerability. Vulnerability discovery and development: Portcullis Security Testing Services. Affected systems: All known versions of...
0.1AI Score
Portcullis Security Advisory 05-001
Portcullis Security Advisory Vulnerable System: Webseries Payment Application Vulnerability Title: Lack of Backend Authorisation Checking Vulnerability discovery and development: Portcullis Security Testing Services Affected systems: Bottomline Webseries Payment Application ...
-0.3AI Score
[SHK-001]Payflow Link Default Config may lead to Hidden Field Modification
[Shirkdog Security Advisory SHK-001] Title: Payflow Link Default Config may lead to Hidden Field Modification Description of Application: http://verisign.com/products-services/payment-processing/online-payment/payflow-link/index.html (careful with the line wrap) Payflow Link is an easy to use...
-0.5AI Score
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Technical Cyber Security Alert TA04-160A SQL Injection Vulnerabilities in Oracle E-Business Suite Original release date: June 8, 2004 Last revised: -- Source: US-CERT Systems Affected * Oracle Applications 11.0 (all releases) ...
0.8AI Score
-0.4AI Score
Include vulnerability in GEMITEL v 3.50
GEMITEL V 3 build 50 :: include vulnerability URL : http://www.isesam.com/ FORUM : http://www.isesam.com/forums/gemitel/thread_open.shtml Vendor has been contacted. Description : Gemitel is a free software written in php that allows to manage micro payments like allopass, mediapaiement,...
0.2AI Score
nCipher Advisory #8: payShield library may verify bad requests
nCipher Security Advisory No. 8 payShield library may verify bad requests ----------------------------------------- SUMMARY When a command is issued to the payShield SPP library it may return Status_OK regardless of what the real reply status was. ISSUE DESCRIPTION 1. Problem...
-0.5AI Score
Remote Exploit in Business::OnlinePayment::WorldPay::Junior
Business::OnlinePayment::WorldPay::Junior is a perl module providing a backend for perl scripts to manage credit/debit card payments through the WorldPay Select Junior service. I am the author of the module. There is a bug in all version of Business::OnlinePayment::WorldPay::Junior prior to...
-0.1AI Score
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 /* * SAVE DEFCON..HELP GOBBLES..SAVE DEFCON..HELP GOBBLES * * When GOBBLES say he and he security team * are non-profit. He really mean NON-profit. * This means GOBBLES and he GOBBLES Security * Labs (GSL) friends do not have much funds. * *...
-0.4AI Score
7.4AI Score
EPSS
0.4AI Score
Web Server Directory Enumeration
This plugin attempts to determine the presence of various common directories on the remote web server. By sending a request for a directory, the web server response code indicates if it is a valid directory or...
9.6AI Score
0.002EPSS
Web Server 4D/eCommerce 3.5.3 Directory Traversal Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Web Server 4D/eCommerce 3.5.3 Directory Traversal Vulnerability Type: Directory Traversal Release Date: December 15, 2002 Product / Vendor: Web Server 4D/eCommerce is a single application that includes a shopping cart, credit card authorization, and...
-0.3AI Score
ZBServer Pro DoS Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZBServer Pro DoS Vulnerability Type: DoS, crashes Daemon Release Date: December 15, 2002 Product / Vendor: ZBServer Pro Edition (for Windows 95 and NT) offers all the functionality of an integrated Web, Gopher, FTP and Chat server ....
-0.3AI Score
Web Server 4D/eCommerce 3.5.3 DoS Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Web Server 4D/eCommerce 3.5.3 DoS Vulnerability Type: DoS, crashes Daemon Release Date: December 15, 2002 Product / Vendor: Web Server 4D/eCommerce is a single application that includes a shopping cart, credit card authorization, and order tracking -...
-0.2AI Score
Pi3Web Webserver v2.0 Buffer Overflow Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Pi3Web Webserver v2.0 Buffer Overflow Vulnerability Type: DoS, crashes Daemon Release Date: January 14, 2002 Product / Vendor: Pi3Web is a free, multithreaded, highly configurable and extensible HTTP server and development environment for cross...
-0.4AI Score
RaidenFTPD v2.2 Arbitrary File Deletion Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 RaidenFTPD v2.2 Arbitrary File Deletion Vulnerability Type: Delete Arbitrary Files Release Date: January 13, 2002 Product / Vendor: RaidenFTPD ftp server solution for Win95/98/NT/2000 http://www.raidenftpd.com/en/ Summary: A vulnerability exists in...
-0.1AI Score
Eserv 2.97 Password Protected File Arbitrary Read Access Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Eserv 2.97 Password Protected File Arbitrary Read Access Vulnerability Type: File Disclosure Release Date: January 10, 2002 Product / Vendor: Eserv Mail, News, Web, FTP and Proxy Servers for Win95/98/NT/2000 http://www.eserv.ru Summary: The...
0.1AI Score
w00w00 on AOL Instant Messenger (serious vulnerability)
================================= AOL Instant Messenger advisory w00w00! http://www.w00w00.org ================================= Author: Matt Conover ([email protected]) Contributors: nocarrier, napster, and w00w00 collectively PRELUDE Happy w00year! It...
-0.7AI Score