Lucene search
K

68 matches found

Cvelist
Cvelist
added 2011/11/02 9:0 p.m.19 views

CVE-2010-5035

Cross-site scripting XSS vulnerability in search.php in iScripts eSwap 2.0 allows remote attackers to inject arbitrary web script or HTML via the txtHomeSearch parameter aka the search field. NOTE: some of these details are obtained from third party information...

5.7AI score0.01776EPSS
Exploits1References7
Cvelist
Cvelist
added 2011/11/02 9:0 p.m.23 views

CVE-2010-5036

SQL injection vulnerability in addsale.php in iScripts eSwap 2.0 allows remote attackers to execute arbitrary SQL commands via the type parameter...

8.4AI score0.01179EPSS
Exploits1References6
CVE
CVE
added 2011/11/02 9:0 p.m.38 views

CVE-2010-5035

CVE-2010-5035 is an XSS vulnerability in iScripts eSwap 2.0, affecting the search.php script via the txtHomeSearch parameter. The underlying issue is a failure to properly sanitize input, enabling remote attackers to inject arbitrary script/HTML through the search field. The NVD entry lists a CVS...

4.3CVSS5.9AI score0.01776EPSS
Exploits1References7Affected Software1
CVE
CVE
added 2011/11/02 9:0 p.m.48 views

CVE-2010-5036

CVE-2010-5036 affects iScripts eSwap 2.0, where addsale.php is vulnerable to SQL injection via the type parameter. The vulnerability allows remote attackers to potentially manipulate the database, with a CVSSv2 base score of 7.5 (HIGH) and network-based, low-complexity conditions, authenticated a...

7.5CVSS8.7AI score0.01179EPSS
Exploits1References6Affected Software1
Packet Storm
Packet Storm
added 2010/06/07 12:0 a.m.31 views

iScripts eSwap 2.0 Cross Site Scripting / SQL Injection

Title:iScripts eSwap v2.0 sqli and xss vulnerability Author: Sid3^effects Published: 2010-06-05 price:$99.95 email:[email protected] vendor: iScripts url : http://www.iscripts.com/eswap/ google dork : Powered by iScripts eSwap. ooooo .oooooo. oooooo oooooo oooo 888' d8P' Y8b 888. 888. .8' 888 88...

0.8AI score
Exploits0
exploitpack
exploitpack
added 2010/06/06 12:0 a.m.28 views

iScripts eSwap 2.0 - SQL Injection Cross-Site Scripting

iScripts eSwap 2.0 - SQL Injection Cross-Site Scripting Title:iScripts eSwap v2.0 sqli and xss vulnerability Author: Sid3^effects Published: 2010-06-05 price:$99.95 email:[email protected] vendor: iScripts url : http://www.iscripts.com/eswap/ google dork : Powered by iScripts eSwap. ooooo .ooooo...

0.7AI score
Exploits0
Exploit DB
Exploit DB
added 2010/06/06 12:0 a.m.49 views

iScripts eSwap 2.0 - SQL Injection / Cross-Site Scripting

Title:iScripts eSwap v2.0 sqli and xss vulnerability Author: Sid3^effects Published: 2010-06-05 price:$99.95 email:[email protected] vendor: iScripts url : http://www.iscripts.com/eswap/ google dork : Powered by iScripts eSwap. ooooo .oooooo. oooooo oooooo oooo 888' d8P' Y8b 888. 888. .8' 888 88...

7AI score
Exploits0
0day.today
0day.today
added 2010/06/06 12:0 a.m.31 views

iScripts eSwap v2.0 XSS / SQL Injection Vulnerability

Exploit for php platform in category web applications ===================================================== iScripts eSwap v2.0 XSS / SQL Injection Vulnerability ===================================================== Title:iScripts eSwap v2.0 sqli and xss vulnerability Author: Sid3^effects...

7.1AI score
Exploits0
Rows per page
Query Builder