CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cross-site scripting XSS vulnerability in Comersus BackOffice allows remote attackers to inject arbitrary web script or HTML via the error parameter to comersusbackofficesupportError.asp. NOTE: the comersusbackofficemessage.asp/message vector is already covered by CVE-2005-2191 item 2...

4.3CVSS5.8AI score0.00558EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 9:37 p.m.•5 views

CVE-2005-3285

Cross-site scripting XSS vulnerability in comersusbackofficesearchItemForm.asp in Comersus BackOffice Plus allows remote attackers to inject arbitrary web script or HTML via the 1 forwardTo1, 2 forwardTo2, 3 nameFT1, or 4 nameFT2 parameters...

4.3CVSS5.9AI score0.00726EPSS

Exploits1References1

Packet Storm•added 2014/09/27 12:0 a.m.•29 views

Comersus Sophisticated Cart Database Disclosure

!/usr/bin/perl -w Comersus Sophisticated Cart Database Disclosure Exploit Author : indoushka Vondor : http://www.comersus.com use LWP::Simple; use LWP::UserAgent; system'cls'; system'Comersus Sophisticated Cart Database Disclosure Exploit '; system'color a'; if@ARGV new; my $request =...

7.4AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•18 views

Comersus BackOffice 4.x/5.0/6.0 comersus_backoffice_supportError.asp error Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/15251/info Comersus BackOfficePlus and BackOfficeLite are prone to multiple input validation and information disclosure vulnerabilities. The applications are prone to SQL injection attacks, information disclosure and...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•19 views

Comersus Cart 6 User Email and User Password Unauthorized Access Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/33217/info Comersus Cart is prone to a vulnerability that can result in unauthorized access. An attacker can exploit this issue to gain unauthorized access to the affected application. Successfully exploiting this issue m...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•25 views

Comersus Cart 7.0.7 Cart comersus_message.asp redirectUrl XSS

No description provided by source. source: http://www.securityfocus.com/bid/24562/info Comersus Cart is affected by multiple input validation vulnerabilities. A successful exploit could allow an attacker to compromise the application, access or modify data, or exploit vulnerabilities in the...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•27 views

Comersus Cart 4.0/5.0 Comersus_Search_Item.ASP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13125/info Comersus Cart is affected by a cross-site scripting vulnerability. This issue is due to a failure in the application to properly validate user-supplied input. An attacker may leverage this issue to have arbitra...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•10 views

Comersus Cart 5.0 HTTP Response Splitting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11083/info Comersus Cart is reported prone to a HTTP response splitting vulnerability. A remote attacker may exploit this vulnerability to influence or misrepresent how web content is served, cached or interpreted. This...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•13 views

Comersus Open Technologies Comersus Cart 6.0.41 Multiple Cross-Site Scripting Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/14191/info Comersus Cart is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage any of these issu...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by