Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-6348

Malware in sbrugna...

7.5CVSS6.4AI score0.01429EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2005-2049

Malware in sbrugna...

7.5CVSS6.4AI score0.0121EPSS
Exploits1References3
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

DUware DUpaypal 3.0/3.1 sub.asp iSub Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/14034/info DUpaypal Pro is prone to multiple SQL-injection vulnerabilities because the fails application to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacke...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.33 views

DUware DUpaypal 3.0/3.1 detail.asp iPro Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/14034/info DUpaypal Pro is prone to multiple SQL-injection vulnerabilities because the fails application to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacke...

7.1AI score
Exploits0
NVD
NVD
added 2006/12/07 11:28 a.m.20 views

CVE-2006-6365

SQL injection vulnerability in detail.asp in DUware DUpaypal 3.1, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the iType parameter. NOTE: the iState parameter is already covered by CVE-2005-3976 and the iPro parameter is already covered by CVE-2005-2047...

7.5CVSS8.1AI score0.01429EPSS
Exploits1References7
CVE
CVE
added 2006/12/07 11:0 a.m.100 views

CVE-2006-6365

CVE-2006-6365 describes a SQL injection in DUware DUpayPal 3.1 (and possibly earlier) via the iType parameter in detail.asp, allowing remote execution of arbitrary SQL commands. Related parameters iState and iPro are covered by CVE-2005-3976 and CVE-2005-2047. The connected EUVD/NVD records corro...

7.5CVSS8.2AI score0.01429EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2006/12/07 11:0 a.m.19 views

CVE-2006-6365

SQL injection vulnerability in detail.asp in DUware DUpaypal 3.1, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the iType parameter. NOTE: the iState parameter is already covered by CVE-2005-3976 and the iPro parameter is already covered by CVE-2005-2047...

8.1AI score0.01429EPSS
Exploits1References7
Packet Storm
Packet Storm
added 2006/12/06 12:0 a.m.22 views

aria-dupaypal.txt

Aria-Security Team Advisory Original Advisory: http://www.aria-security.com/forum/showthread.php?t=62 ----------------------------------------------------------- Software: DuPaypal Method: SQL Injection Vendor: http://www.duware.com/ PoC: /DUpaypal/type.asp?iType=SQL Injection...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2006/12/05 12:0 a.m.105 views

[Aria-Security Team] DuWare DuPaypal SQL Injection Vuln

Aria-Security Team Advisory www.Aria-security.Com For English www.Aria-Security.net For Persian Original Advisory: http://www.aria-security.com/forum/showthread.php?t=62 ----------------------------------------------------------- Software: DuPaypal Method: SQL Injection Vendor:...

2.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/06/28 12:0 a.m.178 views

DUpaypal Pro Multiple Scripts SQL Injection

The remote host is running DUpaypal Pro, an ASP-based storefront from DUware for Paypal. The installed version of DUpaypal Pro fails to properly sanitize user- supplied input in several instances before using it in SQL queries. By exploiting these flaws, an attacker can affect database queries,...

7.5CVSS5.8AI score0.01429EPSS
Exploits2References4
Packet Storm
Packet Storm
added 2005/06/23 12:0 a.m.31 views

Echo Security Advisory 2005.19

--------------------------------------------------------------------------- ECHOADV19$2005 Multiple SQL INJECTION in DUWARE Products --------------------------------------------------------------------------- Author: Dedi Dwianto Date: June, 22th 2005 Location: Indonesia, Jakarta Web:...

0.4AI score
Exploits0
CVE
CVE
added 2005/06/22 4:0 a.m.174 views

CVE-2005-2047

Affected product: DUware DUpaypal Pro (3.0; 3.1 noted in related CVEs) is affected by multiple SQL injection vulnerabilities. Vulnerability: Improper sanitization of user-supplied input enables remote attackers to craft SQL queries via specific parameters and pages: iCat to cat.asp (and catEdit.a...

7.5CVSS8.5AI score0.0121EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2005/06/22 4:0 a.m.13 views

CVE-2005-2047

Multiple SQL injection vulnerabilities in DUware DUpaypal Pro 3.0 allow remote attackers to execute arbitrary SQL commands via the 1 iCat parameter to cat.asp, 2 iPro parameter to detail.asp, 3 iSub parameter to sub.asp, 4 iCat parameter to catEdit.asp...

7.5CVSS8.4AI score0.0121EPSS
Exploits1References2
Cvelist
Cvelist
added 2005/06/22 4:0 a.m.21 views

CVE-2005-2047

Multiple SQL injection vulnerabilities in DUware DUpaypal Pro 3.0 allow remote attackers to execute arbitrary SQL commands via the 1 iCat parameter to cat.asp, 2 iPro parameter to detail.asp, 3 iSub parameter to sub.asp, 4 iCat parameter to catEdit.asp...

8.4AI score0.0121EPSS
Exploits1References2
exploitpack
exploitpack
added 2005/06/22 12:0 a.m.86 views

DUware DUpaypal 3.03.1 - sub.asp?iSub SQL Injection

DUware DUpaypal 3.03.1 - sub.asp?iSub SQL Injection source: https://www.securityfocus.com/bid/14034/info DUpaypal Pro is prone to multiple SQL-injection vulnerabilities because the fails application to properly sanitize user-supplied input before using it in SQL queries. A successful exploit coul...

0.1AI score
Exploits0
securityvulns
securityvulns
added 2005/06/22 12:0 a.m.70 views

[ECHO_ADV_19$2005] Multiple SQL INJECTION in DUWARE Products

--------------------------------------------------------------------------- ECHOADV19$2005 Multiple SQL INJECTION in DUWARE Products --------------------------------------------------------------------------- Author: Dedi Dwianto Date: June, 22th 2005 Location: Indonesia, Jakarta Web:...

Exploits0
Exploit DB
Exploit DB
added 2005/06/22 12:0 a.m.164 views

DUware DUpaypal 3.0/3.1 - 'detail.asp?iPro' SQL Injection

source: https://www.securityfocus.com/bid/14034/info DUpaypal Pro is prone to multiple SQL-injection vulnerabilities because the fails application to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromise the application,...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2005/06/22 12:0 a.m.195 views

DUware DUpaypal 3.0/3.1 - 'sub.asp?iSub' SQL Injection

source: https://www.securityfocus.com/bid/14034/info DUpaypal Pro is prone to multiple SQL-injection vulnerabilities because the fails application to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to compromise the application,...

7.4AI score
Exploits0
Rows per page
Query Builder