32 matches found
CVE-2019-11680
KonaKart 8.9.0.0 is vulnerable to Remote Code Execution by uploading a web shell as a product category image...
EUVD-2017-8274
Malware in sbrugna...
EUVD-2014-5403
Malware in sbrugna...
EUVD-2019-3350
Malware in sbrugna...
EUVD-2009-4487
Malware in sbrugna...
CVE-2014-5516
Cross-site request forgery CSRF vulnerability in the Storefront Application in DS Data Systems KonaKart before 7.3.0.0 allows remote attackers to hijack the authentication of administrators for requests that change a user email address via an unspecified GET request...
CVE-2014-5516
KonaKart Storefront Application (DS Data Systems) prior to 7.3.0.0 is vulnerable to CSRF protection bypass that allows an attacker to hijack an administrator’s session by issuing a manipulated GET request to change a user email address. The issue is documented in CVE-2014-5516, with a remediation...
CVE-2019-11680
KonaKart 8.9.0.0 is vulnerable to Remote Code Execution by uploading a web shell as a product category image...
CVE-2019-11680
KonaKart 8.9.0.0 is vulnerable to Remote Code Execution by uploading a web shell as a product category image...
Remote code execution
KonaKart 8.9.0.0 is vulnerable to Remote Code Execution by uploading a web shell as a product category image...
CVE-2019-11680
KonaKart 8.9.0.0 is vulnerable to Remote Code Execution by uploading a web shell as a product category image...
CVE-2019-11680
CVE-2019-11680 affects KonaKart 8.9.0.0. The vulnerability allows remote code execution by uploading a web shell as a product category image, indicating the attacker can run arbitrary code on the server. Multiple connected sources (NVD, Red Hat advisory, CNVD, PRION, CVE lists) corroborate that K...
KonaKart Remote Code Execution Vulnerability
KonaKart is a Java-based shopping cart software solution for online retailers. A remote code execution vulnerability exists in KonaKart version 8.9.0.0. An attacker could exploit the vulnerability to execute code...
DS Data Systems KonaKart eCommerce Platform Directory Traversal Vulnerability
DS Data Systems KonaKart eCommerce Platform is a Java-based eCommerce software from DS Data Systems, UK. The software enhances modules such as shopping cart, payment and order summarization. A directory traversal vulnerability exists in the administration panel of DS Data Systems KonaKart eCommer...
CVE-2017-17108
Path traversal vulnerability in the administrative panel in KonaKart eCommerce Platform version 8.7 and earlier could allow an attacker to download system files, as well as upload specially crafted JSP files and in turn gain access to the server...
CVE-2017-17108
Path traversal vulnerability in the administrative panel in KonaKart eCommerce Platform version 8.7 and earlier could allow an attacker to download system files, as well as upload specially crafted JSP files and in turn gain access to the server...
Path traversal
Path traversal vulnerability in the administrative panel in KonaKart eCommerce Platform version 8.7 and earlier could allow an attacker to download system files, as well as upload specially crafted JSP files and in turn gain access to the server...
CVE-2017-17108
Path traversal vulnerability in the administrative panel in KonaKart eCommerce Platform version 8.7 and earlier could allow an attacker to download system files, as well as upload specially crafted JSP files and in turn gain access to the server...
CVE-2017-17108
KonaKart eCommerce Platform (DS Data Systems) Admin panel suffers a directory traversal vulnerability in version 8.7 and earlier. The flaw allows attackers to download system files and upload crafted JSP files, potentially gaining full server access. Affected product: KonaKart eCommerce Platform ...
Konakart v7.3.0.1 CMS - CS Cross Site Web Vulnerability
Document Title: =============== Konakart v7.3.0.1 CMS - CS Cross Site Web Vulnerability References Source: ==================== http://vulnerability-lab.com/getcontent.php?id=1362 Release Date: ============= 2014-12-04 Vulnerability Laboratory ID VL-ID: ==================================== 1362...