EUVD-2005-1734

Malware in sbrugna...

CVE-2020-21120

SQL Injection vulnerability in file home\controls\cart.class.php in UQCMS 2.1.3, allows attackers execute arbitrary commands via the cookiecart parameter to /index.php/cart/num...

CVE-2005-1733

Cookie Cart stores the password file under the web document root with insufficient access control, which allows remote attackers to obtain usernames and encrypted passwords via a direct request to passwd.txt...

CVE-2005-1732

Cookie Cart allows remote attackers to read the Order Notification list via the testmycgi and path parameters to testmy.cgi...

CVE-2005-1733

Cookie Cart stores the password file under the web document root with insufficient access control, which allows remote attackers to obtain usernames and encrypted passwords via a direct request to passwd.txt...

CVE-2005-1732

Cookie Cart allows remote attackers to read the Order Notification list via the testmycgi and path parameters to testmy.cgi...

CVE-2005-1733

CVE-2005-1733 affects Cookie Cart: password file passwd.txt is stored under the web document root with insufficient access control, enabling remote retrieval of usernames and encrypted passwords via a direct request. CVSS v2 base score 5.0 (Medium). No exploitation details or fixes are provided i...

CVE-2005-1732

Cookie Cart is affected by CVE-2005-1732 where remote attackers can read the Order Notification list through the testmycgi and path parameters to testmy.cgi. The available sources confirm this access path but do not specify affected versions, patches, or exact root cause details beyond the parame...

[SA15448] Cookie Cart Exposure of Order Notifications and Passwords

---------------------------------------------------------------------- Bist Du interessiert an einem neuen Job in IT-Sicherheit? Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT- Sicherheit: http://secunia.com/secuniavacancies/...