91 matches found
EUVD-2008-4104
Malware in sbrugna...
EUVD-2008-1906
Malware in sbrugna...
EUVD-2008-1908
Malware in sbrugna...
EUVD-2009-1343
Malware in sbrugna...
EUVD-2003-1490
Malware in sbrugna...
EUVD-2007-2951
Malware in sbrugna...
EUVD-2007-2882
Malware in sbrugna...
EUVD-2008-1907
Malware in sbrugna...
EUVD-2007-2960
Malware in sbrugna...
EUVD-2008-4617
Malware in sbrugna...
cpCommerce v1.2.8 - (id_document) Blind SQL Injection
Document Title: =============== cpCommerce v1.2.8 - iddocument Blind SQL Injection References Source: ==================== https://www.vulnerability-lab.com/getcontent.php?id=2254 Release Date: ============= 2020-05-08 Vulnerability Laboratory ID VL-ID: ==================================== 2254...
cpcommerce 1.1.0 (xss/lfi) Multiple Vulnerabilities
No description provided by source. www.BugReport.ir AmnPardaz Security Research Team Title: cpCommerce Multiple Vulnerabilities Vendor: http://cpcommerce.cpradio.org Bugs: XSS, SQL Injection , Local File Inclusion Vulnerable Version: 1.1.0 prior versions also may be affected Exploitation: Remote...
CPCommerce 1.1 Manufacturer.PHP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/24223/info cpCommerce is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise th...
Immunity Canvas: CPCOMMERCE_RFI
Name| cpcommercerfi ---|--- CVE| CVE-2009-1936 Exploit Pack| CANVAS Description| cpCommerce 1.2.x Remote File Include Notes| CVE Name: CVE-2009-1936 VENDOR: cpCommerce Repeatability: Infinite CVE Url: https://vulners.com/cve/CVE-2009-1936 References: 'http://www.securityfocus.com/bid/35103' CVSS:...
CVE-2009-1936
functions.php in cpCommerce 1.2.x, possibly including 1.2.9, sends a redirect but does not exit when it is called directly, which allows remote attackers to bypass a protection mechanism to conduct remote file inclusion and directory traversal attacks, execute arbitrary PHP code, or read arbitrar...
Directory traversal
functions.php in cpCommerce 1.2.x, possibly including 1.2.9, sends a redirect but does not exit when it is called directly, which allows remote attackers to bypass a protection mechanism to conduct remote file inclusion and directory traversal attacks, execute arbitrary PHP code, or read arbitrar...
CVE-2009-1936
functions.php in cpCommerce 1.2.x, possibly including 1.2.9, sends a redirect but does not exit when it is called directly, which allows remote attackers to bypass a protection mechanism to conduct remote file inclusion and directory traversal attacks, execute arbitrary PHP code, or read arbitrar...
CVE-2009-1936
functions.php in cpCommerce 1.2.x, possibly including 1.2.9, sends a redirect but does not exit when it is called directly, which allows remote attackers to bypass a protection mechanism to conduct remote file inclusion and directory traversal attacks, execute arbitrary PHP code, or read arbitrar...
CVE-2009-1936
The CVE-2009-1936 entry concerns cpCommerce 1.2.x (possibly including 1.2.9) and related variants. The root cause is in _functions.php: when called directly, a redirect is issued but not exited, allowing bypass of a protection mechanism that enables remote file inclusion and directory traversal v...
PT-2009-4392 · Cpcommerce · Cpcommerce
Name of the Vulnerable Software and Affected Versions: cpCommerce versions 1.2.x, possibly including 1.2.9 Description: The issue allows remote attackers to bypass a protection mechanism, enabling them to conduct remote file inclusion and directory traversal attacks, execute arbitrary PHP code, o...