28 matches found
Catalog Builder - Ecommerce Software - Blind SQL Injection
No description provided by source. +------------------------------------------------------------------------------------------+ |------- Catalog Builder - Ecommerce Software - Blind SQL Injection Vulnerability -------|...
CubeCart 4.4.6 Open URL Redirection
OVERVIEW CubeCart 4.4.6 and lower versions are vulnerable to Open URL Redirection. 2. BACKGROUND CubeCart is an "out of the box" ecommerce shopping cart software solution which has been written to run on servers that have PHP & MySQL support. With CubeCart you can quickly setup a powerful online...
Catalog Builder eCommerce Software - Blind SQL Injection
+------------------------------------------------------------------------------------------+ |------- Catalog Builder - Ecommerce Software - Blind SQL Injection Vulnerability -------| +------------------------------------------------------------------------------------------+ + Google Dork hint:...
PEEL Premium 5.71 SQL Injection Vulnerability
Exploit for php platform in category web applications ============================================= PEEL Premium 5.71 SQL Injection Vulnerability ============================================= My + Author : KnocKout + Greatz : DaiMon & ALL MUSLIM HACKERS!! Contact : email protected Software info...
CubeCart 4 - Session Management Bypass
CubeCart 4 Session Management Bypass Release Date: 2009/10/29 Author: Bogdan Calin bogdan at acunetix dot com Severity: Critical Vendor Status: Vendor has released an updated version I. Background From Wikipedia: CubeCart is a free-to-use eCommerce software solution, designed to allow individuals...
[BMSA-2009-01] Authentication bypass in Interspire Shopping Cart v4.0.1 and below
BLUE MOON SECURITY ADVISORY 2009-01 =================================== :Title: Authentication bypass in Interspire Shopping Cart :Severity: Critical :Reporter: Truong Van Tri and Blue Moon Consulting :Products: Interspire Shopping Cart v4.0.1 Ultimate edition :Fixed in: v4.0.2 Description...
Webscene eCommerce (level) Remote Sql Injection
Webscene eCommerce level Remote Sql Injection vendor : http://www.webscenesolutions.com/ecommerce-shopping-websites-edinburgh.htm Bug Found By :Angela Chang 14-10-2008 contact: angelatch4ng.cc Greetz: nyubi & Vrs-Chk vuln file : productlist.php Input passed to the "level" is not properly verified...
Again NULL and addslashes() (now in 123tkshop)
Hi! Ok, another announce about a php application containing unslashed SQL-Queries and bad include/require statements. Several problems in 123tkshop ------------------------------------- What is 123tkshop? 123tkshop is a ecommerce software written in php. It's providing a full featured online shop...