Lucene search
K

13 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-9079

Malware in sbrugna...

7.2CVSS7AI score0.01981EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/22 1:2 a.m.9 views

CVE-2015-9226

Multiple SQL injection vulnerabilities in AlegroCart 1.2.8 allow remote administrators to execute arbitrary SQL commands via the download parameter in the 1 checkdownload and possibly 2 checkfilename function in upload/admin2/model/products/modeladmindownload.php or remote authenticated users wit...

7.2CVSS8.6AI score0.01981EPSS
Exploits1References1
NVD
NVD
added 2017/09/11 8:29 p.m.18 views

CVE-2015-9227

PHP remote file inclusion vulnerability in the getfile function in upload/admin2/controller/reportlogs.php in AlegroCart 1.2.8 allows remote administrators to execute arbitrary PHP code via a URL in the filepath parameter to upload/admin2...

7.2CVSS7.3AI score0.02463EPSS
Exploits1References4
Prion
Prion
added 2017/09/11 8:29 p.m.14 views

Sql injection

Multiple SQL injection vulnerabilities in AlegroCart 1.2.8 allow remote administrators to execute arbitrary SQL commands via the download parameter in the 1 checkdownload and possibly 2 checkfilename function in upload/admin2/model/products/modeladmindownload.php or remote authenticated users wit...

6.5CVSS8.8AI score0.01981EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2017/09/11 8:29 p.m.18 views

Remote file inclusion

PHP remote file inclusion vulnerability in the getfile function in upload/admin2/controller/reportlogs.php in AlegroCart 1.2.8 allows remote administrators to execute arbitrary PHP code via a URL in the filepath parameter to upload/admin2...

6.5CVSS8AI score0.02463EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2017/09/11 8:0 p.m.20 views

CVE-2015-9227

PHP remote file inclusion vulnerability in the getfile function in upload/admin2/controller/reportlogs.php in AlegroCart 1.2.8 allows remote administrators to execute arbitrary PHP code via a URL in the filepath parameter to upload/admin2...

7.3AI score0.02463EPSS
Exploits1References4
CVE
CVE
added 2017/09/11 8:0 p.m.48 views

CVE-2015-9227

CVE-2015-9227 affects AlegroCart 1.2.8. The get_file function in upload/admin2/controller/report_logs.php is vulnerable to remote file inclusion, allowing an attacker to execute arbitrary PHP code via a URL provided in the file_path parameter. Public references (e.g., Exploit-DB) document exploit...

7.2CVSS7.3AI score0.02463EPSS
Exploits1References4Affected Software1
0day.today
0day.today
added 2015/11/17 12:0 a.m.27 views

AlegroCart 1.2.8 - LFI/RFI Vulnerability

Exploit for php platform in category web applications 1. Introduction Affected Product: AlegroCart 1.2.8 Fixed in: Patch AC128fix22102015 Path Link: http://forum.alegrocart.com/download/file.php?id=1047 Vendor Website: http://alegrocart.com/ Vulnerability Type: LFI/RFI Remote Exploitable: Yes...

7.1AI score
Exploits0
0day.today
0day.today
added 2015/11/17 12:0 a.m.34 views

AlegroCart 1.2.8 - Multiple SQL Injection Vulnerabilities

Exploit for php platform in category web applications 1. Introduction Affected Product: AlegroCart 1.2.8 Fixed in: Patch AC128fix17102015 Path Link: http://forum.alegrocart.com/download/file.php?id=1040 Vendor Website: http://alegrocart.com/ Vulnerability Type: SQL Injection Remote Exploitable: Y...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2015/11/16 12:0 a.m.30 views

AlegroCart 1.2.8 SQL Injection

Security Advisory - Curesec Research Team 1. Introduction Affected Product: AlegroCart 1.2.8 Fixed in: Patch AC128fix17102015 Path Link: http://forum.alegrocart.com/download/file.php?id=1040 Vendor Website: http://alegrocart.com/ Vulnerability Type: SQL Injection Remote Exploitable: Yes Reported ...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2015/11/16 12:0 a.m.14 views

AlegroCart 1.2.8 - LocalRemote File Inclusion

AlegroCart 1.2.8 - LocalRemote File Inclusion Security Advisory - Curesec Research Team 1. Introduction Affected Product: AlegroCart 1.2.8 Fixed in: Patch AC128fix22102015 Path Link: http://forum.alegrocart.com/download/file.php?id=1047 Vendor Website: http://alegrocart.com/ Vulnerability Type:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2015/11/16 12:0 a.m.22 views

AlegroCart 1.2.8 Local / Remote File Inclusion

Security Advisory - Curesec Research Team 1. Introduction Affected Product: AlegroCart 1.2.8 Fixed in: Patch AC128fix22102015 Path Link: http://forum.alegrocart.com/download/file.php?id=1047 Vendor Website: http://alegrocart.com/ Vulnerability Type: LFI/RFI Remote Exploitable: Yes Reported to...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2015/11/16 12:0 a.m.29 views

AlegroCart 1.2.8 - Local/Remote File Inclusion

Security Advisory - Curesec Research Team 1. Introduction Affected Product: AlegroCart 1.2.8 Fixed in: Patch AC128fix22102015 Path Link: http://forum.alegrocart.com/download/file.php?id=1047 Vendor Website: http://alegrocart.com/ Vulnerability Type: LFI/RFI Remote Exploitable: Yes Reported to...

7.4AI score
Exploits0
Rows per page
Query Builder