EUVD-2006-7153

Malware in sbrugna...

EUVD-2006-7152

Malware in sbrugna...

CVE-2006-7171

productreview.php in Koan Software Mega Mall allows remote attackers to obtain the installation path via a request with an empty value of the x parameter...

CVE-2006-7170

Multiple SQL injection vulnerabilities in Koan Software Mega Mall allow remote attackers to execute arbitrary SQL commands via the 1 t, 2 productId, 3 sk, 4 x, or 5 so parameter to a productreview.php; or the 6 orderNo parameter to b order-track.php...

CVE-2006-7170

Multiple SQL injection vulnerabilities in Koan Software Mega Mall allow remote attackers to execute arbitrary SQL commands via the 1 t, 2 productId, 3 sk, 4 x, or 5 so parameter to a productreview.php; or the 6 orderNo parameter to b order-track.php...

CVE-2006-7171

productreview.php in Koan Software Mega Mall allows remote attackers to obtain the installation path via a request with an empty value of the x parameter...

CVE-2006-7171

CVE-2006-7171 affects Koan Software Mega Mall. The vulnerability occurs in product_review.php, where remote attackers can cause disclosure of the installation path by sending a request with an empty value for the x[] parameter. The provided documents do not specify affected versions, root cause d...

CVE-2006-7170

CVE-2006-7170 describes multiple SQL injection vulnerabilities in Koan Software Mega Mall. The affected components are the PHP scripts (a) product_review.php via parameters t, productId, sk, x, or so, and (b) order-track.php via parameter orderNo. The root cause is unsafely concatenated SQL in th...