Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-5230

Malware in sbrugna...

7.5CVSS6.4AI score0.0181EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2006-5232

Malware in sbrugna...

6.8CVSS6.4AI score0.01589EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2006-5231

Malware in sbrugna...

5CVSS6.4AI score0.01495EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2025/05/21 9:21 p.m.8 views

CVE-2006-5248

Eazy Cart stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a customer database via a direct request for admin/config/customer.dat. NOTE: the provenance of this information is unknown; the details are obtained from third...

7.8CVSS6.7AI score0.01551EPSS
Exploits1References1
NVD
NVD
added 2006/10/12 12:7 a.m.14 views

CVE-2006-5248

Eazy Cart stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a customer database via a direct request for admin/config/customer.dat. NOTE: the provenance of this information is unknown; the details are obtained from third...

7.8CVSS6.3AI score0.01551EPSS
Exploits1References1
NVD
NVD
added 2006/10/12 12:7 a.m.8 views

CVE-2006-5247

Multiple cross-site scripting XSS vulnerabilities in Eazy Cart allow remote attackers to inject arbitrary web script or HTML via easycart.php, possibly related to the 1 des and 2 qty parameters in an add action, and via other unspecified vectors. NOTE: some details are obtained from third party...

6.8CVSS5.9AI score0.01589EPSS
Exploits1References7
NVD
NVD
added 2006/10/12 12:7 a.m.11 views

CVE-2006-5246

Eazy Cart allows remote attackers to change prices and other critical fields via unspecified vectors to easycart.php, probably including the price parameter. NOTE: some details are obtained from third party information...

5CVSS6.7AI score0.01495EPSS
Exploits0References7
NVD
NVD
added 2006/10/12 12:7 a.m.12 views

CVE-2006-5245

Eazy Cart allows remote attackers to bypass authentication and gain administrative access via a direct request for admin/home/index.php, and possibly other PHP scripts under admin/...

7.5CVSS7.3AI score0.0181EPSS
Exploits0References7
Cvelist
Cvelist
added 2006/10/12 12:0 a.m.17 views

CVE-2006-5246

Eazy Cart allows remote attackers to change prices and other critical fields via unspecified vectors to easycart.php, probably including the price parameter. NOTE: some details are obtained from third party information...

6.7AI score0.01495EPSS
Exploits0References7
CVE
CVE
added 2006/10/12 12:0 a.m.42 views

CVE-2006-5247

CVE-2006-5247 concerns multiple cross-site scripting (XSS) vulnerabilities in Eazy Cart. The affected component is the web application’s easycart.php, with possible vectors including the (1) des and (2) qty parameters in an add action and other unspecified vectors. The description and connected s...

6.8CVSS6.1AI score0.01589EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2006/10/12 12:0 a.m.16 views

CVE-2006-5247

Multiple cross-site scripting XSS vulnerabilities in Eazy Cart allow remote attackers to inject arbitrary web script or HTML via easycart.php, possibly related to the 1 des and 2 qty parameters in an add action, and via other unspecified vectors. NOTE: some details are obtained from third party...

5.9AI score0.01589EPSS
Exploits1References7
CVE
CVE
added 2006/10/12 12:0 a.m.40 views

CVE-2006-5246

The CVE-2006-5246 issue concerns Eazy Cart where remote attackers can modify prices and other critical fields via unspecified vectors to easycart.php, likely abusing an input-validation flaw that permits altering the price parameter. The core weakness is insufficient validation/authorization on p...

5CVSS7.1AI score0.01495EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2006/10/12 12:0 a.m.17 views

CVE-2006-5245

Eazy Cart allows remote attackers to bypass authentication and gain administrative access via a direct request for admin/home/index.php, and possibly other PHP scripts under admin/...

7.3AI score0.0181EPSS
Exploits0References7
Cvelist
Cvelist
added 2006/10/12 12:0 a.m.21 views

CVE-2006-5248

Eazy Cart stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a customer database via a direct request for admin/config/customer.dat. NOTE: the provenance of this information is unknown; the details are obtained from third...

6.3AI score0.01551EPSS
Exploits1References1
CVE
CVE
added 2006/10/12 12:0 a.m.41 views

CVE-2006-5248

CVE-2006-5248 affects Eazy Cart: sensitive customer data stored under the web root with insufficient access control, allowing remote retrieval of admin/config/customer.dat via direct request. Multiple sources (NVD, Red Hat, CVE List, CVE Details) describe the same issue. Root cause is improper ac...

7.8CVSS6.7AI score0.01551EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2006/10/12 12:0 a.m.49 views

CVE-2006-5245

Summary (CVE-2006-5245): Eazy Cart is affected by a authentication bypass vulnerability in the admin area. A remote attacker can gain administrative access by issuing a direct request to a file such as admin/home/index.php (and potentially other PHP scripts under the admin/ directory), bypassing ...

7.5CVSS7.8AI score0.0181EPSS
Exploits0References7Affected Software1
securityvulns
securityvulns
added 2006/10/11 12:0 a.m.39 views

[Full-disclosure] MHL-2006-001 Public Advisory: "Eazy Cart" Multiple Security Issues

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 MHL-2006-001 - Public Advisory +-----------------------------------------------------------+ | Eazy Cart Multiple Security Issues | +-----------------------------------------------------------+ PUBLISHED ON October 9th, 2006 PUBLISHED AT...

6.5AI score
Exploits0
securityvulns
securityvulns
added 2006/10/11 12:0 a.m.58 views

MHL-2006-001 Public Advisory: "Eazy Cart" Multiple Security Issues

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 MHL-2006-001 - Public Advisory +-----------------------------------------------------------+ | Eazy Cart Multiple Security Issues | +-----------------------------------------------------------+ PUBLISHED ON October 9th, 2006 PUBLISHED AT...

6.6AI score
Exploits0
Rows per page
Query Builder