10 matches found
EUVD-2000-1077
Malware in sbrugna...
ezshopper.txt
Product: EZshopper Versions: all URL: www.ahg.com Vulnerability: Directory Traversal Date: November 25, 2004 Discovered by: Zero X loadpage.cgi of EZshopper allows Directory Traversal Example: http://targethost/cgi-bin/loadpage.cgi?userid=id&file=.|./.|./.|./.|./.|./etc/passwd%00.html - Zero X -...
EZshopper is still vulnerable against Directory Traversal.
Product: EZshopper Versions: all URL: www.ahg.com Vulnerability: Directory Traversal Date: November 25, 2004 Discovered by: Zero X [email protected] loadpage.cgi of EZshopper allows Directory Traversal Example:...
Alex Heiphetz Group eZshopper - 'loadpage.cgi' Directory Traversal
Example: http://targethost/cgi-bin/loadpage.cgi?userid=id&file=.|./.|./.|./.|./.|./etc/passwd%00.html milw0rm.com 2004-11-25...
CVE-2000-1092
loadpage.cgi CGI program in EZshopper 3.0 and 2.0 allows remote attackers to list and read files in the EZshopper data directory by inserting a "/" in front of the target filename in the "file" parameter...
CVE-2000-1092
loadpage.cgi CGI program in EZshopper 3.0 and 2.0 allows remote attackers to list and read files in the EZshopper data directory by inserting a "/" in front of the target filename in the "file" parameter...
NSFOCUS SA2000-09 : AHG EZshopper Loadpage.cgi File List Disclosure Vulnerability
NSFOCUS Security AdvisorySA2000-09 Topic: AHG EZshopper Loadpage.cgi File List Disclosure Vulnerability Release DateЈє Dec 13rd, 2000 CVE Candidate Numbers: CAN-2000-1092 Affected system: ================ Alex Heiphetz Group EZshopper v.3.0 for Unix Alex Heiphetz Group EZshopper v.2.0 for Unix...
alex heiphetz Group eZshopper 2.03.0 - Directory Traversal
alex heiphetz Group eZshopper 2.03.0 - Directory Traversal source: https://www.securityfocus.com/bid/2109/info It is possible for a remote user to gain read access to various files that reside within the EZShopper directory. By requesting a specially crafted URL utilizing loadpage.cgi' applicatio...
CVE-2000-0187
EZShopper 3.0 loadpage.cgi CGI script allows remote attackers to read arbitrary files via a .. dot dot attack or execute commands via shell metacharacters...
CVE-2000-0187
EZShopper 3.0 loadpage.cgi CGI script allows remote attackers to read arbitrary files via a .. dot dot attack or execute commands via shell metacharacters...