27 matches found
EUVD-2005-0982
Malware in sbrugna...
EUVD-2005-3026
Malware in sbrugna...
EUVD-2005-4645
Malware in sbrugna...
EUVD-2005-0981
Malware in sbrugna...
AlstraSoft EPay Pro 2.0 - Remote File Include Vulnerability
No description provided by source. !/usr/bin/env python coding: utf-8 import re from pocsuite.net import req from pocsuite.poc import Output, POCBase from pocsuite.utils import register class AlstraSoftEPayProRemoteFileIncludePOCBase: vulID = '78990' version = '1' vulDate = '2005-04-01' author = ...
AlstraSoft EPay Pro 2.0 - Multiple Cross-Site Scripting Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/12974/info It is reported that EPay Pro is affected by various cross-site scripting vulnerabilities. These problems present themselves when malicious HTML and script code is sent to the application through multiple...
EPay Pro 2.0 Index.PHP Directory Traversal Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/14871/info EPay Pro is prone to a directory traversal vulnerability. This is due to a lack of proper validation of user-supplied input. An unauthorized user can retrieve arbitrary files by supplying directory traversal...
CVE-2005-4651
The CVE-2005-4651 entry describes an SQL injection vulnerability in index.php of AlstraSoft EPay Pro 2.0, exploitable via the pmodule parameter to execute arbitrary SQL commands remotely. Affected component: index.php in AlstraSoft EPay Pro 2.0; root cause is injectable SQL through pmodule. Docum...
CVE-2005-4651
SQL injection vulnerability in index.php in AlstraSoft EPay Pro 2.0 allows remote attackers to execute arbitrary SQL commands via the pmodule parameter...
CVE-2005-4651
SQL injection vulnerability in index.php in AlstraSoft EPay Pro 2.0 allows remote attackers to execute arbitrary SQL commands via the pmodule parameter...
AlstraSoft EPay Pro "pmodule" SQL Injection Vulnerability
AlstraSoft EPay Pro "pmodule" SQL Injection Vulnerability Vuln. dicovered by : r0t Vendor:http://www.alstrasoft.com/ Product link: http://www.alstrasoft.com/epay.htm affected version:v2.0 Product Overview: How would you like to own your very own payment processing website and business built with...
HYA-2005-008-alstrasoft-epay-pro.txt
------------------------------------------------------ HYA-2005-008 h4cky0u.org Advisory 008 ------------------------------------------------------ Date - Mon Sep 19 2005 TITLE: ====== Alstrasoft Epay Pro 2.0 and prior Directory Traversal Vulnerability SEVERITY: ========= Medium SOFTWARE: =======...
CVE-2005-3026
Directory traversal vulnerability in index.php in Alstrasoft Epay Pro 2.0 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the read parameter...
CVE-2005-3026
Directory traversal vulnerability in index.php in Alstrasoft Epay Pro 2.0 and earlier allows remote attackers to read arbitrary files via a .. dot dot in the read parameter...
CVE-2005-3026
The vulnerability CVE-2005-3026 affects Alstrasoft Epay Pro 2.0 and earlier, allowing remote attackers to read arbitrary files through a directory traversal in the read parameter (..). The issue is described in the NVD entry as a directory traversal in index.php. No remediation details are provid...
Alstrasoft Epay Pro 2.0 and prior Directory Traversal Vulnerability
------------------------------------------------------ HYA-2005-008 h4cky0u.org Advisory 008 ------------------------------------------------------ Date - Mon Sep 19 2005 TITLE: ====== Alstrasoft Epay Pro 2.0 and prior Directory Traversal Vulnerability SEVERITY: ========= Medium SOFTWARE: =======...
CVE-2005-0981
Multiple cross-site scripting XSS vulnerabilities in AlstraSoft EPay Pro 2.0 allow remote attackers to inject arbitrary web script or HTML via the 1 payment or 2 send parameter...
CVE-2005-0980
PHP remote file inclusion vulnerability in index.php in AlstraSoft EPay Pro 2.0 allows remote attackers to execute arbitrary PHP code by modifying the view parameter to reference a URL on a remote web server that contains the code...
AlstraSoft20.txt
This is a multi-part message in MIME format. ------=NextPart000001201C53726.5C0BF6A0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Dcrab 's Security Advisory Hsc Security Group http://www.hackerscenter.com/...
CVE-2005-0981
CVE-2005-0981 describes multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft EPay Pro 2.0 that allow remote attackers to inject arbitrary web script or HTML via the (1) payment or (2) send parameter. The NVD entry lists a base score of 4.3 (MEDIUM) with network attack vector, no conf...