16 matches found
EUVD-2006-2649
Malware in sbrugna...
EUVD-2006-2648
Malware in sbrugna...
CVE-2006-2650
SQL injection vulnerability in cosmicshop/search.php in CosmicShoppingCart allows remote attackers to execute arbitrary SQL commands via the max parameter...
CVE-2006-2649
Multiple cross-site scripting XSS vulnerabilities in a search.php, b searchcat.php, c searchprice.php, and d productdetails.php in the cosmicshop directory for CosmicShoppingCart allow remote attackers to inject arbitrary web script or HTML via multiple unspecified parameters, as demonstrated by...
Sql injection
SQL injection vulnerability in cosmicshop/search.php in CosmicShoppingCart allows remote attackers to execute arbitrary SQL commands via the max parameter...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in a search.php, b searchcat.php, c searchprice.php, and d productdetails.php in the cosmicshop directory for CosmicShoppingCart allow remote attackers to inject arbitrary web script or HTML via multiple unspecified parameters, as demonstrated by...
CVE-2006-2650
SQL injection vulnerability in cosmicshop/search.php in CosmicShoppingCart allows remote attackers to execute arbitrary SQL commands via the max parameter...
CVE-2006-2649
In CosmicShoppingCart, the CosmicShop directory contains multiple XSS vulnerabilities in search.php, search_cat.php, search_price.php, and product_details.php. The flaws allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, demonstrated by the (1) query paramet...
CVE-2006-2649
Multiple cross-site scripting XSS vulnerabilities in a search.php, b searchcat.php, c searchprice.php, and d productdetails.php in the cosmicshop directory for CosmicShoppingCart allow remote attackers to inject arbitrary web script or HTML via multiple unspecified parameters, as demonstrated by...
CVE-2006-2650
The CVE-2006-2650 entry documents an SQL injection in CosmicShoppingCart, specifically in cosmicshop/search.php, exploitable via the max parameter. The vulnerability allows remote attackers to craft arbitrary SQL commands executed by the database. The affected component is the search functionalit...
CosmicShoppingCart (search.php) Remote SQL Injection Vulnerability
Software: CosmicShoppingCart www.cosmicphp.com Risk: Medium Discovered by: Vympel Marcelo Almeida Background: CosmicShoppingCart is a PHP / MySQL e-commerce system. It is a fully customizable, shopping cart designed. SQL injections have been found, they could be exploited by users to retrieve the...
CosmicShoppingCart - 'search.php' SQL Injection
Software: CosmicShoppingCart www.cosmicphp.com Risk: Medium Discovered by: Vympel Marcelo Almeida Background: CosmicShoppingCart is a PHP / MySQL e-commerce system. It is a fully customizable, shopping cart designed. SQL injections have been found, they could be exploited by users to retrieve the...
CosmicShoppingCart (search.php) Remote SQL Injection Vulnerability
No description provided by source. Software: CosmicShoppingCart www.cosmicphp.com Risk: Medium Discovered by: Vympel Marcelo Almeida Background: CosmicShoppingCart is a PHP / MySQL e-commerce system. It is a fully customizable, shopping cart designed. SQL injections have been found, they could be...
CosmicShoppingCart - search.php SQL Injection
CosmicShoppingCart - search.php SQL Injection Software: CosmicShoppingCart www.cosmicphp.com Risk: Medium Discovered by: Vympel Marcelo Almeida Background: CosmicShoppingCart is a PHP / MySQL e-commerce system. It is a fully customizable, shopping cart designed. SQL injections have been found, th...
CosmicShoppingCart (search.php) Remote SQL Injection Vulnerability
Exploit for unknown platform in category web applications ================================================================== CosmicShoppingCart search.php Remote SQL Injection Vulnerability ================================================================== Software: CosmicShoppingCart...
[Full-disclosure] ZH2006-20 SA: CosmicShoppingCart Multiple Vulnerabilities
Software: CosmicShoppingCart www.cosmicphp.com Risk: Medium Discovered by: Vympel Marcelo Almeida Background: CosmicShoppingCart is a PHP / MySQL e-commerce system. It is a fully customizable, shopping cart designed. Description: Multiple Cross site scripting and SQL injection vulnerabilities hav...