CVE-2022-24086

Adobe Commerce versions 2.4.3-p1 and earlier and 2.3.7-p2 and earlier are affected by an improper input validation vulnerability during the checkout process. Exploitation of this issue does not require user interaction and could result in arbitrary code execution. Recent assessments: Assessed...

WordPress plugin Credova_Financial 安全漏洞

WordPress Plugin is an open source application plugin for WordPress. A security vulnerability exists in the WordPress plugin CredovaFinancial 1.4.8 and earlier versions, which stems from the plugin exposing the username and password of the website's associated Credova API account in plaintext via...

CVE-2021-36030

Magento Commerce versions 2.4.2 and earlier, 2.4.2-p1 and earlier and 2.3.7 and earlier are affected by an improper input validation vulnerability during the checkout process. An unauthenticated attacker can leverage this vulnerability to alter the price of items...

Input validation

Magento Commerce versions 2.4.2 and earlier, 2.4.2-p1 and earlier and 2.3.7 and earlier are affected by an improper input validation vulnerability during the checkout process. An unauthenticated attacker can leverage this vulnerability to alter the price of items...

CVE-2021-36030 Magento Commerce Improper Input Validation During Checkout Process Could Lead To Privilege Escalation

Magento Commerce versions 2.4.2 and earlier, 2.4.2-p1 and earlier and 2.3.7 and earlier are affected by an improper input validation vulnerability during the checkout process. An unauthenticated attacker can leverage this vulnerability to alter the price of items...

Basic Citrix Licensing Information

How does Citrix licensing work? Citrix product goes through a three-step process to check out licenses; information on Licensing overview, visit Citrix Documentation athttps://docs.citrix.com/en-us/licensing/current-release.html Available License types? Visit Citrix Documentation...

gifttree.com XSS vulnerability

Open Bug Bounty ID: OBB-501030 Description| Value ---|--- Affected Website:| gifttree.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

shop.platformpurple.com XSS vulnerability

Open Bug Bounty ID: OBB-199289 Description| Value ---|--- Affected Website:| shop.platformpurple.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

UC Profile - Moderately Critical - Information Disclosure - SA-CONTRIB-2015-165

UC Profile module enables you to collect profile fields for users during the checkout process of Ubercart as a checkout pane. The module doesn't sufficiently check access to profiles under certain circumstances. Depending on the information being collected, sensitive data may be exposed. This...

Change CMS 3.6.8 - Multiple CSRF Vulnerabilities

No description provided by source. Exploit Title: RBS Change Complet Open Source multiple CSRF vulnerabilities POST and GET Date: 10/10/2014 Exploit Author: KrustyHack Vendor Homepage: http://www.rbschange.fr/ Software Link:...

Change CMS 3.6.8 - Multiple CSRF Vulnerabilities

Exploit for php platform in category web applications Exploit Title: RBS Change Complet Open Source multiple CSRF vulnerabilities POST and GET Date: 10/10/2014 Exploit Author: KrustyHack Vendor Homepage: http://www.rbschange.fr/ Software Link:...

CuuMall商城系统v2.3 储存型xss

简要描述： rt 详细说明： 收货地址处 提交订单 。后台 查看时 触发 可打cookie 后台getshell姿势很多。就不多说了。 关键字 ： Power by CuuMall 还是有一定 用户量的 漏洞证明：...

Easy CMS enterprise built Station system vulnerability 0day-vulnerability warning-the black bar safety net

Easy CMS enterprise built Station system vulnerability 0day in injection: The relevant code: ........................ Omitted part of the.................................... id=request"id":id1=SplitIDs,", ":delid=replacerequest"id","'","" set rs = server. createobject"adodb. recordset" sql="DELET...