6 matches found
Comersus Open Technologies Comersus Cart 6.0.41 - Multiple Cross-Site Scripting Vulnerabilities
Comersus Open Technologies Comersus Cart 6.0.41 - Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/14191/info Comersus Cart is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize...
Comersus Cart 5.0/6.0 - Multiple Vulnerabilities
source: https://www.securityfocus.com/bid/12362/info Comersus Cart is reportedly affected by multiple vulnerabilities. There is a possiblity of gaining administrator access due to a failure of the application to remove an installation script after install. There is the possiblity of SQL injection...
Comersus Cart Multiple Input Validation Vulnerabilities (SQLi, XSS)
The remote host is running the Comersus Shopping Cart Software. There is a flaw in this interface that allows an attacker to log in as any user by using a SQL injection flaw in the code of comersusbackofficelogin.php. An attacker may use this flaw to gain unauthorized access on this host, or to...
Comersus Open Technologies Comersus 5.0 - comersus_message.asp Cross-Site Scripting
Comersus Open Technologies Comersus 5.0 - comersusmessage.asp Cross-Site Scripting source: https://www.securityfocus.com/bid/10674/info Comersus Cart is reported prone to multiple vulnerabilities. These issues may allow a remote attacker to carry out cross-site scripting attacks and manipulate...
Comersus Open Technologies Comersus 5.0 - comersus_gatewayPayPal.asp Price Manipulation
Comersus Open Technologies Comersus 5.0 - comersusgatewayPayPal.asp Price Manipulation source: https://www.securityfocus.com/bid/10674/info Comersus Cart is reported prone to multiple vulnerabilities. These issues may allow a remote attacker to carry out cross-site scripting attacks and manipulat...
Comersus Open Technologies Comersus 5.0 - 'comersus_gatewayPayPal.asp' Price Manipulation
source: https://www.securityfocus.com/bid/10674/info Comersus Cart is reported prone to multiple vulnerabilities. These issues may allow a remote attacker to carry out cross-site scripting attacks and manipulate parameters to change the price of an order. Comersus Cart version 5.09 is affected by...