CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Multiple cross-site scripting XSS vulnerabilities in ViArt Shop Enterprise 2.1.6 allow remote attackers to inject arbitrary web script or HTML via 1 various parameters to basket.php, 2 the nickname, email, topic, and message fields in forum.php, as demonstrated using forumnewthread.php and...

6.8CVSS6AI score0.02744EPSS

Exploits1References1

Packet Storm•added 2016/06/13 12:0 a.m.•26 views

Viart Shopping Cart 5.0 CSRF / Shell Upload

function submitRequest var xhr = new XMLHttpRequest; xhr.open"POST", "http://localhost/admin/adminfmuploadfiles.php", true; xhr.setRequestHeader"Accept", "text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8"; xhr.setRequestHeader"Accept-Language", "en-US,en;q=0.5";...

0.5AI score

Exploits0

exploitpack•added 2016/06/13 12:0 a.m.•15 views

Viart Shopping Cart 5.0 - Cross-Site Request Forgery Arbitrary File Upload

Viart Shopping Cart 5.0 - Cross-Site Request Forgery Arbitrary File Upload function submitRequest var xhr = new XMLHttpRequest; xhr.open"POST", "http://localhost/admin/adminfmuploadfiles.php", true; xhr.setRequestHeader"Accept", "text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8";...

0.8AI score

Exploits0

0day.today•added 2016/06/13 12:0 a.m.•12 views

Viart Shopping Cart 5.0 - Cross-Site Request Forgery / Arbitrary File Upload

Exploit for php platform in category web applications function submitRequest var xhr = new XMLHttpRequest; xhr.open"POST", "http://localhost/admin/adminfmuploadfiles.php", true; xhr.setRequestHeader"Accept", "text/html,application/xhtml+xml,application/xml;q=0.9,/;q=0.8";...

7.1AI score

Exploits0

Packet Storm•added 2015/06/05 12:0 a.m.•34 views

ViArt Shop 4.2.1 CSRF / XSS / SQL Injection / File Upload

ViArt Shop 4.2.1 Mullti Vulnerability ===================================== Author : indoushka Vondor : www.viart.com/ Dork : PHP Ecommerce Solutions by ViArt ========================================= XSS : C:\AppServ\www\viart\articlesrss.php Line : 190 echo $xml Remote/Local File Inclusion :...

1.3AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•26 views

CodetoSell ViArt Shop Enterprise 2.1.6 product_details.php category_id Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/13462/info ViArt Shop is affected by multiple cross-site scripting and HTML injection vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input before using it in...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•12 views

ViArt CMS forum_topic_new.php forum_id Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/36003/info ViArt CMS is prone to multiple cross site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the context ...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by