64 matches found
CVE-2005-4052
e107 0.6174 allows remote attackers to redirect users to other web sites via the download parameter in rate.php, which is used after a user submits a file download rating. NOTE: in the default installation, the eBASE variable restricts the redirection to the same web site...
CVE-2005-4052
e107 0.6174 allows remote attackers to redirect users to other web sites via the download parameter in rate.php, which is used after a user submits a file download rating. NOTE: in the default installation, the eBASE variable restricts the redirection to the same web site...
CVE-2005-4052
CVE-2005-4052 affects e107 0.6174. The vulnerability arises in rate.php: the download parameter is used after a file download rating, enabling remote attackers to redirect users to arbitrary sites. The default installation reportedly mitigates this via the e_BASE check, restricting redirects to t...
CVE-2005-2543
Directory traversal vulnerability in wce.download.php in Comdev eCommerce 3.0 allows remote attackers to download arbitrary files via a .. dot dot in the download parameter...