Lucene search
+L

12 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2001-0967

Malware in sbrugna...

7.5CVSS6.4AI score0.03867EPSS
Exploits1References5
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.100 views

hassan consulting shopping cart 1.18 - Directory Traversal vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1777/info The $page variable in Hassan Consulting Shopping Cart does not properly check for insecure relative paths such as the double dot ... Therefore, requesting the following URL will display the specified file:...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2002/02/02 5:0 a.m.20 views

CVE-2001-0985

shop.pl in Hassan Consulting Shopping Cart 1.23 allows remote attackers to execute arbitrary commands via shell metacharacters in the "page" parameter...

7.7AI score0.03867EPSS
Exploits1References4
CVE
CVE
added 2002/02/02 5:0 a.m.48 views

CVE-2001-0985

Affected product: Hassan Consulting Shopping Cart 1.23. Vulnerability: arbitrary command execution via shell metacharacters in the URL parameter “page” leading to remote code execution. Root cause is unsafely handling the page parameter in shop.pl, allowing user-supplied input to be interpreted b...

7.5CVSS7.7AI score0.03867EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2001/09/08 4:0 a.m.14 views

CVE-2001-0985

shop.pl in Hassan Consulting Shopping Cart 1.23 allows remote attackers to execute arbitrary commands via shell metacharacters in the "page" parameter...

7.5CVSS7.7AI score0.03867EPSS
Exploits1References4
exploitpack
exploitpack
added 2001/09/08 12:0 a.m.74 views

Hassan Consulting Shopping Cart 1.23 - Arbitrary Command Execution

Hassan Consulting Shopping Cart 1.23 - Arbitrary Command Execution source: https://www.securityfocus.com/bid/3308/info Hassan Consulting's Shopping Cart is commercial web store software. Shopping Cart does not filter certain types of user-supplied input from web requests. This makes it possible f...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2001/09/08 12:0 a.m.67 views

Hassan Consulting Shopping Cart 1.23 - Arbitrary Command Execution

source: https://www.securityfocus.com/bid/3308/info Hassan Consulting's Shopping Cart is commercial web store software. Shopping Cart does not filter certain types of user-supplied input from web requests. This makes it possible for a malicious user to submit a request which causes arbitrary...

7.4AI score
Exploits0
CVE
CVE
added 2001/01/22 5:0 a.m.77 views

CVE-2000-0921

CVE-2000-0921 describes a directory traversal in Hassan Consulting’s shop.cgi shopping cart, allowing remote attackers to read arbitrary files by using a .. payload in the page parameter. The issue is due to improper handling of relative paths, enabling access to sensitive files and potentially e...

5CVSS7AI score0.08126EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2001/01/22 5:0 a.m.25 views

CVE-2000-0921

Directory traversal vulnerability in Hassan Consulting shop.cgi shopping cart program allows remote attackers to read arbitrary files via a .. dot dot attack on the page parameter...

6.6AI score0.08126EPSS
Exploits1References4
securityvulns
securityvulns
added 2000/10/10 12:0 a.m.154 views

Security Advisory: Hassan Consulting's shop.cgi Directory Traversal Vulnerability.

October 7, 2000 Security Advisory shop.cgi.ad-1.00-10 : Hassan Consulting's Shopping Cart shop.cgi Directory Traversal Vulnerability Affected Product: Hassan Consulting's Shopping Cart shop.cgi/shop.pl Version 1.18 possibly others aswell Affected Platforms: Unix Windows Overview: Hassan...

7.2AI score
Exploits0
exploitpack
exploitpack
added 2000/10/07 12:0 a.m.49 views

Hassan Consulting Shopping Cart 1.18 - Directory Traversal

Hassan Consulting Shopping Cart 1.18 - Directory Traversal source: https://www.securityfocus.com/bid/1777/info The $page variable in Hassan Consulting Shopping Cart does not properly check for insecure relative paths such as the double dot "..". Therefore, requesting the following URL will displa...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2000/10/07 12:0 a.m.531 views

Hassan Consulting Shopping Cart 1.18 - Directory Traversal

source: https://www.securityfocus.com/bid/1777/info The $page variable in Hassan Consulting Shopping Cart does not properly check for insecure relative paths such as the double dot "..". Therefore, requesting the following URL will display the specified file:...

7.4AI score
Exploits0
Rows per page
Query Builder