11 matches found
EUVD-2006-5942
Malware in sbrugna...
EUVD-2006-5943
Malware in sbrugna...
aspirecoffeeworks.com XSS vulnerability
Open Bug Bounty ID: OBB-671769 Description| Value ---|--- Affected Website:| aspirecoffeeworks.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
CVE-2006-5959
SQL injection vulnerability in browse.asp in A+ Store E-Commerce allows remote attackers to execute arbitrary SQL commands via the ParentID parameter...
CVE-2006-5959
SQL injection vulnerability in browse.asp in A+ Store E-Commerce allows remote attackers to execute arbitrary SQL commands via the ParentID parameter...
CVE-2006-5960
CVE-2006-5960 concerns XSS vulnerabilities in A+ Store E-Commerce, specifically in account_login.asp. The issue allows remote attackers to inject arbitrary script/HTML via the username (txtUserName) and password (txtPassword) parameters. The vulnerability affects the login page’s input handling a...
CVE-2006-5959
The CVE-2006-5959 vulnerability is an SQL injection in browse.asp of A+ Store E-Commerce, exploitable via the ParentID parameter to allow remote execution of arbitrary SQL commands. Vulnerable component: browse.asp; vulnerability type: SQL injection; impact per sources: unauthorized data access/m...
A+ Store E-Commerce[ injection sql & xss (post) ]
vendor site:http://www.webinhabit.com/ product:A+ Store E-Commerce bug:injection sql & xss post risk:medium injection sql get : http://site.com/browse.asp?ParentID='sql xss post : in /accountlogin.asp: username =...
astoreecom.txt
vendor site:http://www.webinhabit.com/ product:A+ Store E-Commerce bug:injection sql & xss post risk:medium injection sql get : http://site.com/browse.asp?ParentID='sql xss post : in /accountlogin.asp: username = '"alertdocument.cookie'"alertdocument.cookie passwd =...
CVE-2000-0101
The CVE-2000-0101 entry concerns the Make-a-Store OrderPage shopping cart, where remote users can modify sensitive purchase information via hidden form fields in the application. Connected PT-2000-1089 confirms the vulnerable software as Make-a-Store OrderPage (affected versions not specified) an...
CVE-2000-0101
The Make-a-Store OrderPage shopping cart application allows remote users to modify sensitive purchase information via hidden form fields...