12 matches found
EUVD-2006-0859
Malware in sbrugna...
Information disclosure
Multiple unspecified vulnerabilities in Intensive Point iUser Ecommerce before 2.2 have unspecified vectors and impact, as addressed by "Urgent secure fixes". NOTE: this might be a duplicate of CVE-2006-0854, but the vendor announcement for this issue from January 8, 2005 is too vague to be sure,...
CVE-2006-0874
Multiple unspecified vulnerabilities in Intensive Point iUser Ecommerce before 2.2 have unspecified vectors and impact, as addressed by "Urgent secure fixes". NOTE: this might be a duplicate of CVE-2006-0854, but the vendor announcement for this issue from January 8, 2005 is too vague to be sure,...
CVE-2006-0874
CVE-2006-0874 relates to Intensive Point iUser Ecommerce prior to 2.2, with multiple unspecified vulnerabilities addressed by urgent fixes. Connected sources provide concrete detail for CVE-2006-0854 (a likely related entry): PHP remote file inclusion in common.php that lets remote attackers incl...
CVE-2006-0874
Multiple unspecified vulnerabilities in Intensive Point iUser Ecommerce before 2.2 have unspecified vectors and impact, as addressed by "Urgent secure fixes". NOTE: this might be a duplicate of CVE-2006-0854, but the vendor announcement for this issue from January 8, 2005 is too vague to be sure,...
PT-2006-1920 · Intensive Point · Intensive Point Iuser Ecommerce
Name of the Vulnerable Software and Affected Versions: Intensive Point iUser Ecommerce versions prior to 2.2 Description: The issue involves multiple unspecified vulnerabilities with unspecified vectors and impact. These vulnerabilities have been addressed by urgent secure fixes. Recommendations:...
[SA18903] iUser Ecommerce common.php File Inclusion Vulnerability
TITLE: iUser Ecommerce common.php File Inclusion Vulnerability SECUNIA ADVISORY ID: SA18903 VERIFY ADVISORY: http://secunia.com/advisories/18903/ CRITICAL: Highly critical IMPACT: System access WHERE: From remote SOFTWARE: iUser Ecommerce 2.x http://secunia.com/product/8175/ DESCRIPTION: ReZEN ha...
[SA19003] iUser Ecommerce Unspecified Vulnerabilities
TITLE: iUser Ecommerce Unspecified Vulnerabilities SECUNIA ADVISORY ID: SA19003 VERIFY ADVISORY: http://secunia.com/advisories/19003/ CRITICAL: Moderately critical IMPACT: Unknown WHERE: From remote SOFTWARE: iUser Ecommerce 2.x http://secunia.com/product/8175/ DESCRIPTION: Some vulnerabilities...
CVE-2006-0854
CVE-2006-0854 describes a PHP remote file inclusion in Intensive Point iUser Ecommerce. The vulnerability arises because common.php uses the include_path without initialization, allowing an attacker to include arbitrary files via a URL. Per NVD, the CVSS v2 base score is 7.5 (HIGH). The connected...
CVE-2006-0854
PHP remote file inclusion vulnerability in common.php in Intensive Point iUser Ecommerce allows remote attackers to include arbitrary files via a URL in the includepath variable, which is not initialized before being used...
XOR-iUser.txt
------=Part352119317884.1140054596440 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=...
[Full-disclosure] iUser Ecommerce - Remote Command Execution Vulnerability
======================================================================================= XOR Crew :: Security Advisory 1/10/2006 ======================================================================================= iUser Ecommerce - Remote Command Execution Vulnerability...