10 matches found
EUVD-2018-2332
Malware in sbrugna...
Shopy Point of Sale Command Injection Vulnerability
Shopy Point of Sale is a PHP-based retail store sales system. A CSV injection vulnerability exists in Shopy Point of Sale version 1.0. An attacker can exploit this vulnerability to inject commands and execute code...
CVE-2018-10258
A CSV Injection vulnerability was discovered in Shopy Point of Sale v1.0 that allows a user with low level privileges to inject a command that will be included in the exported CSV file, leading to possible code execution...
CVE-2018-10258
A CSV Injection vulnerability was discovered in Shopy Point of Sale v1.0 that allows a user with low level privileges to inject a command that will be included in the exported CSV file, leading to possible code execution...
Input validation
A CSV Injection vulnerability was discovered in Shopy Point of Sale v1.0 that allows a user with low level privileges to inject a command that will be included in the exported CSV file, leading to possible code execution...
CVE-2018-10258
A CSV Injection vulnerability was discovered in Shopy Point of Sale v1.0 that allows a user with low level privileges to inject a command that will be included in the exported CSV file, leading to possible code execution...
CVE-2018-10258
Shopy Point of Sale v1.0 is affected by a CSV Injection vulnerability (CVE-2018-10258). A low-privilege user can craft data that, when exported to CSV, executes commands on the system. Exploitation details appear in multiple sources, including PoC steps showing adding =cmd|'/C calc'!A1 to a custo...
Shopy Point Of Sale 1.0 CSV Injection
Exploit Title: Shopy Point of Sale v1.0 - CSV Injection Date: 2018-04-23 Exploit Author: 8bitsec CVE: CVE-2018-10258 Vendor Homepage: https://codecanyon.net/ Software Link: https://codecanyon.net/item/shopy-point-of-sales/21730225 Version: 1.0 Tested on: Kali Linux 2.0 | Mac OS 10.13 Release Date...
Shopy Point of Sale v1.0 - CSV Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Shopy Point of Sale v1.0 - CSV Injection Exploit Author: 8bitsec CVE: CVE-2018-10258 Vendor Homepage: https://codecanyon.net/ Software Link: https://codecanyon.net/item/shopy-point-of-sales/21730225 Version: 1.0 Tested on: Kali...
Shopy Point of Sale 1.0 - CSV Injection
Exploit Title: Shopy Point of Sale v1.0 - CSV Injection Date: 2018-04-23 Exploit Author: 8bitsec CVE: CVE-2018-10258 Vendor Homepage: https://codecanyon.net/ Software Link: https://codecanyon.net/item/shopy-point-of-sales/21730225 Version: 1.0 Tested on: Kali Linux 2.0 | Mac OS 10.13 Release Date...