Lucene search
K

7 matches found

Cvelist
Cvelist
added 2014/10/20 4:0 p.m.28 views

CVE-2014-3978

SQL injection vulnerability in TomatoCart 1.1.8.6.1 allows remote authenticated users to execute arbitrary SQL commands via the First Name and Last Name fields in a new address book contact...

7.7AI score0.01727EPSS
Exploits7References2
CVE
CVE
added 2014/10/20 4:0 p.m.48 views

CVE-2014-3978

TomatoCart 1.x (stable) is affected by CVE-2014-3978: an SQL injection in the address book creation flow (First name/Last name fields) that allows remote authentication-based attacker to inject arbitrary SQL. Affected software version is TomatoCart 1.1.8.6.1. Public references include OpenVAS and...

6.5CVSS7.9AI score0.01727EPSS
Exploits7References2Affected Software1
securityvulns
securityvulns
added 2014/08/26 12:0 a.m.76 views

TomatoCart v1.x (latest-stable) Multiple Vulnerabilities

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2014-3978 - Remote SQL Injection Vulnerability CVE-2014-3830 - Reflected Cross Site Scripting - ------------------------------------------------------------------------------ Title: TomatoCart v1.x latest-stable Remote SQL Injection Vulnerability...

6.5CVSS7.7AI score0.01727EPSS
Exploits8
0day.today
0day.today
added 2014/08/14 12:0 a.m.61 views

TomatoCart 1.x - SQL Injection Vulnerability

Exploit for php platform in category web applications Title: TomatoCart v1.x latest-stable Remote SQL Injection Vulnerability Background: TomatoCart is open source ecommerce solution developed and maintained by a number of 64,000+ users from 50+ countries and regions. It's distributed under the...

6.5CVSS6.5AI score0.01727EPSS
Exploits7
exploitpack
exploitpack
added 2014/08/09 12:0 a.m.33 views

TomatoCart 1.x - SQL Injection

TomatoCart 1.x - SQL Injection Title: TomatoCart v1.x latest-stable Remote SQL Injection Vulnerability Background: TomatoCart is open source ecommerce solution developed and maintained by a number of 64,000+ users from 50+ countries and regions. It's distributed under the terms of the GNU General...

6.5CVSS0.01727EPSS
Exploits7
Exploit DB
Exploit DB
added 2014/08/09 12:0 a.m.46 views

TomatoCart 1.x - SQL Injection

Title: TomatoCart v1.x latest-stable Remote SQL Injection Vulnerability Background: TomatoCart is open source ecommerce solution developed and maintained by a number of 64,000+ users from 50+ countries and regions. It's distributed under the terms of the GNU General Public License or "GPL", free ...

6.5CVSS7AI score0.01727EPSS
Exploits7
Packet Storm
Packet Storm
added 2014/08/06 12:0 a.m.43 views

TomatoCart 1.x Cross Site Scripting / SQL Injection

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2014-3978 - Remote SQL Injection Vulnerability CVE-2014-3830 - Reflected Cross Site Scripting - ------------------------------------------------------------------------------ Title: TomatoCart v1.x latest-stable Remote SQL Injection Vulnerability...

6.5CVSS6.5AI score0.01727EPSS
Exploits8
Rows per page
Query Builder