Lucene search
K

34 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2008-3126

Malware in sbrugna...

7.5CVSS6.4AI score0.00967EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2007-0060

Malware in sbrugna...

6.8CVSS6.4AI score0.02582EPSS
Exploits0References13
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.9 views

AShop Deluxe 4.5 ashop/search.php searchstring Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21845/info AShop Deluxe and AShop Administration Panel are prone to multiple cross-site scripting vulnerabilities because they fail to sufficiently sanitize user-supplied input data. An attacker may leverage these issues ...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.15 views

AShop Deluxe 4.5 admin/editcatalogue.php cat Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21845/info AShop Deluxe and AShop Administration Panel are prone to multiple cross-site scripting vulnerabilities because they fail to sufficiently sanitize user-supplied input data. An attacker may leverage these issues ...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.37 views

AShop Deluxe 4.5 ashop/basket.php cat Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21845/info AShop Deluxe and AShop Administration Panel are prone to multiple cross-site scripting vulnerabilities because they fail to sufficiently sanitize user-supplied input data. An attacker may leverage these issues ...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

AShop Deluxe 4.5 ashop/catalogue.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21845/info AShop Deluxe and AShop Administration Panel are prone to multiple cross-site scripting vulnerabilities because they fail to sufficiently sanitize user-supplied input data. An attacker may leverage these issues ...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.11 views

AShop Deluxe 4.5 shipping.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21845/info AShop Deluxe and AShop Administration Panel are prone to multiple cross-site scripting vulnerabilities because they fail to sufficiently sanitize user-supplied input data. An attacker may leverage these issues ...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.8 views

AShop Deluxe 4.5 admin/salesadmin.php resultpage Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/21845/info AShop Deluxe and AShop Administration Panel are prone to multiple cross-site scripting vulnerabilities because they fail to sufficiently sanitize user-supplied input data. An attacker may leverage these issues ...

7.1AI score
Exploits0
Prion
Prion
added 2008/07/10 11:41 p.m.10 views

Sql injection

SQL injection vulnerability in catalogue.php in AShop Deluxe 4.x allows remote attackers to execute arbitrary SQL commands via the cat parameter...

7.5CVSS9.1AI score0.00967EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2008/07/10 11:41 p.m.13 views

CVE-2008-3136

SQL injection vulnerability in catalogue.php in AShop Deluxe 4.x allows remote attackers to execute arbitrary SQL commands via the cat parameter...

7.5CVSS8.4AI score0.00967EPSS
Exploits1References4
Cvelist
Cvelist
added 2008/07/10 11:0 p.m.21 views

CVE-2008-3136

SQL injection vulnerability in catalogue.php in AShop Deluxe 4.x allows remote attackers to execute arbitrary SQL commands via the cat parameter...

8.4AI score0.00967EPSS
Exploits1References4
CVE
CVE
added 2008/07/10 11:0 p.m.40 views

CVE-2008-3136

The CVE-2008-3136 entry concerns a SQL injection in AShop Deluxe 4.x. Affected software: AShop Deluxe (version family 4.x). Vulnerable component: catalogue.php, with exploitation via the cat parameter. Root cause: unsanitized input leading to arbitrary SQL execution. Impact: partial confidentiali...

7.5CVSS8.4AI score0.00967EPSS
Exploits1References4Affected Software1
seebug.org
seebug.org
added 2008/07/03 12:0 a.m.69 views

AShop Deluxe "cat" SQL注入漏洞

BUGTRAQ ID: CNCAN ID:CNCAN-2008070301 AShop Deluxe是一款基于PHP的WEB应用程序。 AShop Deluxe不正确处理用户提交的输入,远程攻击者可以利用漏洞进行SQL注入攻击,可能获得敏感信息或操作数据库。 问题由于脚本对用户提交给'cat'参数缺少过滤,构建恶意SQL查询作为参数数据,可更改原来的SQL逻辑,获得敏感信息或操作数据库。 AShop Deluxe 4.x 升级到AShop Deluxe 4.8.5: http://www.ashopsoftware.com/ http://www.sebug.net/exploit/39...

6.9AI score
Exploits0
Packet Storm
Packet Storm
added 2008/07/01 12:0 a.m.39 views

ashop-sql.txt

usr/bin/perl use LWP::UserAgent; use HTTP::Cookies; use Getopt::Long; use URI::Escape; -------------------------------------------------------------------------------------------------------------------------------------------------------- x AShop Deluxe 4.x Remote SQL inJection Exploit x Ditemuk...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2008/07/01 12:0 a.m.42 views

AShop Deluxe 4.x (catalogue.php cat) Remote SQL Injection Exploit

No description provided by source. usr/bin/perl use LWP::UserAgent; use HTTP::Cookies; use Getopt::Long; use URI::Escape; -------------------------------------------------------------------------------------------------------------------------------------------------------- x AShop Deluxe 4.x...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2008/06/30 12:0 a.m.31 views

AShop Deluxe 4.x - catalogue.php SQL Injection

AShop Deluxe 4.x - catalogue.php SQL Injection usr/bin/perl use LWP::UserAgent; use HTTP::Cookies; use Getopt::Long; use URI::Escape; -------------------------------------------------------------------------------------------------------------------------------------------------------- x AShop...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2008/06/30 12:0 a.m.42 views

AShop Deluxe 4.x - 'catalogue.php' SQL Injection

usr/bin/perl use LWP::UserAgent; use HTTP::Cookies; use Getopt::Long; use URI::Escape; -------------------------------------------------------------------------------------------------------------------------------------------------------- x AShop Deluxe 4.x Remote SQL inJection Exploit x Ditemuk...

7AI score
Exploits0
0day.today
0day.today
added 2008/06/30 12:0 a.m.95 views

AShop Deluxe 4.x (catalogue.php cat) Remote SQL Injection Exploit

Exploit for unknown platform in category web applications ================================================================= AShop Deluxe 4.x catalogue.php cat Remote SQL Injection Exploit ================================================================= usr/bin/perl use LWP::UserAgent; use...

7.1AI score
Exploits0
NVD
NVD
added 2007/01/04 10:28 p.m.19 views

CVE-2007-0056

Multiple cross-site scripting XSS vulnerabilities in AShop Deluxe 4.5 and AShop Administration Panel allow remote attackers to inject arbitrary web script or HTML via the 1 cat parameter to a ashop/catalogue.php and b ashop/basket.php, the 2 exp parameter to ashop/catalogue.php, the 3 searchstrin...

6.8CVSS5.8AI score0.02582EPSS
Exploits0References12
Cvelist
Cvelist
added 2007/01/04 10:0 p.m.21 views

CVE-2007-0056

Multiple cross-site scripting XSS vulnerabilities in AShop Deluxe 4.5 and AShop Administration Panel allow remote attackers to inject arbitrary web script or HTML via the 1 cat parameter to a ashop/catalogue.php and b ashop/basket.php, the 2 exp parameter to ashop/catalogue.php, the 3 searchstrin...

5.8AI score0.02582EPSS
Exploits0References12
Rows per page
Query Builder