frescogourmetcoffee.co.uk XSS vulnerability

Open Bug Bounty ID: OBB-472510 Description| Value ---|--- Affected Website:| frescogourmetcoffee.co.uk Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

shoppingclub.pk XSS vulnerability

Open Bug Bounty ID: OBB-467554 Description| Value ---|--- Affected Website:| shoppingclub.pk Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...

jencea.com.tw XSS vulnerability

Open Bug Bounty ID: OBB-467327 Description| Value ---|--- Affected Website:| jencea.com.tw Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat She...

electronica.mexicored.com.mx XSS vulnerability

Open Bug Bounty ID: OBB-466659 Description| Value ---|--- Affected Website:| electronica.mexicored.com.mx Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS...

aditivosparapolimeros.mexicored.com.mx XSS vulnerability

Open Bug Bounty ID: OBB-457808 Description| Value ---|--- Affected Website:| aditivosparapolimeros.mexicored.com.mx Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP...

abasolo.mexicored.com.mx XSS vulnerability

Open Bug Bounty ID: OBB-454118 Description| Value ---|--- Affected Website:| abasolo.mexicored.com.mx Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Preventio...

CVE-2017-17695

Techno - Portfolio Management Panel through 2017-11-16 allows SQL Injection via the panel/search.php s parameter...

CVE-2017-17696

Techno - Portfolio Management Panel through 2017-11-16 allows full path disclosure via an invalid s parameter to panel/search.php...

CVE-2017-17694

Techno - Portfolio Management Panel through 2017-11-16 allows XSS via the panel/search.php s parameter...

CVE-2017-17695

The CVE concerns Techno - Portfolio Management Panel with a SQL Injection vulnerability in the panel/search.php s parameter (affecting versions up to 2017-11-16). The CNVD entry explicitly describes a remote attacker manipulating the s parameter to execute SQL commands and potentially disclose da...

Website Auction Marketplace SQL Injection Vulnerability

Website Auction Marketplace is a software for creating e-commerce websites. A SQL injection vulnerability exists in Website Auction Marketplace version 2.0.5. The vulnerability can be exploited by remote attackers to inject SQL commands by sending the 'catid' parameter to the search.php file...

CVE-2017-17592

Website Auction Marketplace 2.0.5 has SQL Injection via the search.php catid parameter...

CVE-2017-17592

Website Auction Marketplace 2.0.5 has SQL Injection via the search.php catid parameter...

CVE-2017-17573

FS Ebay Clone 1.0 has SQL Injection via the product.php id parameter, or the search.php categoryid or subcategoryid parameter...

Sql injection

FS Ebay Clone 1.0 has SQL Injection via the product.php id parameter, or the search.php categoryid or subcategoryid parameter...

Sql injection

Website Auction Marketplace 2.0.5 has SQL Injection via the search.php catid parameter...

CVE-2017-17573

FS Ebay Clone 1.0 has SQL Injection via the product.php id parameter, or the search.php categoryid or subcategoryid parameter...

CVE-2017-17592

Website Auction Marketplace 2.0.5 contains an SQL injection in the search.php cat_id parameter. The issue allows remote attackers to manipulate SQL queries, enabling potential data leakage or modification (per sources listed). The CVE is corroborated by multiple databases (NVD, CNVD, CVE.gov) wit...

CVE-2017-17592

Website Auction Marketplace 2.0.5 has SQL Injection via the search.php catid parameter...

CVE-2017-17573

CVE-2017-17573 affects FS Ebay Clone 1.0, where SQL injection is possible via product.php?id and via search.php parameters category_id or sub_category_id. The root cause is improper handling of user-supplied input in those parameters, enabling attacker-controlled SQL commands. Documented impact i...