42 matches found
EUVD-2014-9130
Malware in sbrugna...
EUVD-2013-5807
Malware in sbrugna...
EUVD-2013-5808
Malware in sbrugna...
EUVD-2014-9263
Malware in sbrugna...
EUVD-2014-9281
Malware in sbrugna...
CVE-2014-9442
SQL injection vulnerability in models/Cart66Ajax.php in the Cart66 Lite plugin before 1.5.4 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the q parameter in a promotionProductSearch action to wp-admin/admin-ajax.php...
CVE-2014-9461
Directory traversal vulnerability in models/Cart66.php in the Cart66 Lite plugin before 1.5.4 for WordPress allows remote authenticated users to read arbitrary files via a .. dot dot in the memberdownload action to wp-admin/admin-ajax.php...
CVE-2013-5978
Multiple cross-site scripting XSS vulnerabilities in products.php in the Cart66 Lite plugin before 1.5.1.15 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 Product name or 2 Price description fields via a request to wp-admin/admin.php. NOTE: This issue may on...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in products.php in the Cart66 Lite plugin before 1.5.1.15 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 Product name or 2 Price description fields via a request to wp-admin/admin.php. NOTE: This issue may on...
CVE-2013-5978
Multiple cross-site scripting XSS vulnerabilities in products.php in the Cart66 Lite plugin before 1.5.1.15 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 Product name or 2 Price description fields via a request to wp-admin/admin.php. NOTE: This issue may on...
CVE-2013-5978
CVE-2013-5978 : In the WordPress Cart66 Lite plugin (affected version: before 1.5.1.15), multiple XSS vulnerabilities exist in the products.php functionality. Remote attackers can inject arbitrary web script or HTML via the 1) Product name or 2) Price description fields in requests to wp-admin/ad...
Wordpress Plugin Cart66 Lite DatabaseSQL Backup Leakage Vulnerability
WordPress is a blogging platform based on the PHP language, which can be used to set up a website on a server that supports PHP and MySQL databases, and can also be used as a content management system CMS. An attacker backup disclosure vulnerability exists in the Wordpress plugin Cart66 Lite...
WordPress cart66 cart66-lite 1.0 Database Disclosure
Exploit Title : WordPress cart66 cart66-lite Plugins 1.0 Database Backup Disclosure Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 03/12/2018 Vendor Homepage : cart66.com wordpress.org/plugins/tags/cart66/ github.com/wp-plugins/cart66-lite Software Download Link ...
WordPress Cart66 Lite插件 status 参数跨站脚本漏洞
No description provided by source...
WordPress Cart66 Lite 1.5.4 Cross Site Scripting
Title: WordPress 'Cart66 Lite :: WordPress Ecommerce' plugin - Reflected XSS Version: 1.5.4 Author: Morten Nørtoft, Kenneth Jepsen, Mikkel Vej Date: 2015/01/26 Download: https://wordpress.org/plugins/cart66-lite/ Contacted WordPress: 2015/01/26...
Cart66 Lite 1.5.4 - XSS
The cart66-lite WordPress plugin was affected by a XSS security vulnerability...
WordPress Plugin Cart66 Lite SQL Injection Vulnerability
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site. Cart66 Lite plugin is an e-commerce plugin developed by cart66 for wordpress. A SQL injection vulnerability exist...
WordPress Plugin Cart66 Lite 'models/Cart66.php' Directory Traversal Vulnerability
WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. A directory traversal vulnerability exists in WordPress plugin Cart66 Lite 'models/Cart66.php' versions prior to 1.5.4, which...
CVE-2014-9461
Directory traversal vulnerability in models/Cart66.php in the Cart66 Lite plugin before 1.5.4 for WordPress allows remote authenticated users to read arbitrary files via a .. dot dot in the memberdownload action to wp-admin/admin-ajax.php...
Directory traversal
Directory traversal vulnerability in models/Cart66.php in the Cart66 Lite plugin before 1.5.4 for WordPress allows remote authenticated users to read arbitrary files via a .. dot dot in the memberdownload action to wp-admin/admin-ajax.php...