EUVD-2007-2810

Malware in sbrugna...

Kartris 1.6 - Arbitrary File Upload Vulnerability

Exploit for asp platform in category web applications Exploit Title: Kartris 1.6 - Arbitrary File Upload Exploit Author: Nhat Ha - Sun CSR Vendor Homepage: https://www.cactusoft.com/ Software Link: https://www.kartris.com/ Version: 1.6 Category: Webapps Tested on: WiN10x64/KaLiLinuXx64 CVE: N/A...

CactuShop - User Invoices Persistent XSS Vulnerability

No description provided by source. User Invoices Persistent XSS Vulnerability in CactuShop 1. Advisory Information Title: User Invoices Persistent XSS Vulnerability in CactuShop Advisory Id: CORE-2010-0406 Advisory URL: http://www.coresecurity.com/content/cactushop-xss-persistent-vulnerability Da...

CactuSoft CactuShop 5.0/5.1 Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/10020/info Reportedly CactuShop is prone to a remote cross-site scripting vulnerability. This issue is due to a failure of the application to properly sanitize user supplied URI input. This issue could permit a remote...

Parodia blind SQL injection vulnerability

Overview The Parodia job board software is vulnerable to a blind SQL injection vulnerability. Parodia 6.8 and earlier versions are reported to be affected. Description Parodia is an ASP based job board application used for recruitment web sites. The Parodia software fails to properly sanitize SQL...

Core Security Technologies Advisory 2010.0406

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://corelabs.coresecurity.com/ User Invoices Persistent XSS Vulnerability in CactuShop 1. Advisory Information Title: User Invoices Persistent XSS Vulnerability in CactuShop Advisory Id: CORE-2010-0406...

CactuShop v6 Database Disclosure Vulnerability

No description provided by source. ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | // \ || || // \ || || ============================================================================== Note : Forever...

CactuShop 6.0 - Database Disclosure

============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | // \ || || // \ || || ============================================================================== Note : Forever RevengeHack.Com...

CactuShop 6.0 - Database Disclosure

CactuShop 6.0 - Database Disclosure ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | // \ || || // \ || || ============================================================================== Note : Forever...

Cross site scripting

Cross-site scripting XSS vulnerability in candlogin.asp in CactuSoft Parodia 6.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the strJobIDs parameter...

CVE-2007-2818

Cross-site scripting XSS vulnerability in candlogin.asp in CactuSoft Parodia 6.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the strJobIDs parameter...

CVE-2007-2818

The CVE-2007-2818 entry describes a Cross-site Scripting (XSS) vulnerability in cand_login.asp of CactuSoft Parodia 6.4 and older. The issue allows remote attackers to inject arbitrary web script or HTML via the strJobIDs parameter. The available documents confirm the affected component and vulne...

CVE-2007-2818

Cross-site scripting XSS vulnerability in candlogin.asp in CactuSoft Parodia 6.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the strJobIDs parameter...

CVE-2004-0260

The AddToMailingList function in CactuSoft CactuShop 5.0 Lite contains a backdoor that allows remote attackers to delete arbitrary files via an email address that starts with |||...

CactuSoft CactuShop v5.x shopping cart software multiple security vulnerabilities

S-Quadra Advisory 2004-03-31 Topic: CactuSoft CactuShop v5.x shopping cart software multiple security vulnerabilities Severity: High Vendor URL: http://www.cactushop.com Advisory URL: http://www.s-quadra.com/advisories/Adv-20040331.txt Release date: 31 Mar 2004 1. DESCRIPTION CactuShop is an ASP...

CVE-2004-0260

The CVE-2004-0260 entry concerns CactuSoft CactuShop 5.0 Lite. The AddToMailingList function contains a backdoor that enables remote attackers to delete arbitrary files by supplying an email address that starts with |||. Public references in NVD describe the backdoor behavior, and connected recor...

CVE-2004-0260

The AddToMailingList function in CactuSoft CactuShop 5.0 Lite contains a backdoor that allows remote attackers to delete arbitrary files via an email address that starts with |||...