CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

18 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2017-8274

Malware in sbrugna...

9.8CVSS9.5AI score0.01619EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2014-5403

Malware in sbrugna...

6.5CVSS6.5AI score0.00153EPSS

Exploits1References5

CVE•added 2020/01/03 7:57 p.m.•156 views

CVE-2014-5516

KonaKart Storefront Application (DS Data Systems) prior to 7.3.0.0 is vulnerable to CSRF protection bypass that allows an attacker to hijack an administrator’s session by issuing a manipulated GET request to change a user email address. The issue is documented in CVE-2014-5516, with a remediation...

6.5CVSS6.7AI score0.00153EPSS

Exploits1References3Affected Software1

NVD•added 2019/05/13 6:29 p.m.•15 views

CVE-2019-11680

KonaKart 8.9.0.0 is vulnerable to Remote Code Execution by uploading a web shell as a product category image...

9.8CVSS9.7AI score0.01366EPSS

Exploits0References1

CVE•added 2019/05/13 5:36 p.m.•40 views

CVE-2019-11680

CVE-2019-11680 affects KonaKart 8.9.0.0. The vulnerability allows remote code execution by uploading a web shell as a product category image, indicating the attacker can run arbitrary code on the server. Multiple connected sources (NVD, Red Hat advisory, CNVD, PRION, CVE lists) corroborate that K...

9.8CVSS9.6AI score0.01366EPSS

Exploits0References1Affected Software1

Prion•added 2018/02/03 3:29 p.m.•19 views

Path traversal

Path traversal vulnerability in the administrative panel in KonaKart eCommerce Platform version 8.7 and earlier could allow an attacker to download system files, as well as upload specially crafted JSP files and in turn gain access to the server...

7.5CVSS9.4AI score0.01619EPSS

Exploits0References1Affected Software1

Cvelist•added 2018/02/03 12:0 a.m.•12 views

CVE-2017-17108

9.6AI score0.01619EPSS

Exploits0References1

CVE•added 2018/02/03 12:0 a.m.•36 views

CVE-2017-17108

KonaKart eCommerce Platform (DS Data Systems) Admin panel suffers a directory traversal vulnerability in version 8.7 and earlier. The flaw allows attackers to download system files and upload crafted JSP files, potentially gaining full server access. Affected product: KonaKart eCommerce Platform ...

9.8CVSS9.4AI score0.01619EPSS

Exploits0References1Affected Software1

securityvulns•added 2014/12/22 12:0 a.m.•99 views

Konakart v7.3.0.1 CMS - CS Cross Site Web Vulnerability

Document Title: =============== Konakart v7.3.0.1 CMS - CS Cross Site Web Vulnerability References Source: ==================== http://vulnerability-lab.com/getcontent.php?id=1362 Release Date: ============= 2014-12-04 Vulnerability Laboratory ID VL-ID: ==================================== 1362...

7.1AI score

Exploits0

Packet Storm•added 2014/12/16 12:0 a.m.•30 views

Konakart 7.3.0.1 Cross Site Scripting

7.4AI score

Exploits0

Vulnerability Lab•added 2014/12/04 12:0 a.m.•31 views

Konakart v7.3.0.1 CMS - CS Cross Site Web Vulnerability

Exploits0

securityvulns•added 2014/10/14 12:0 a.m.•68 views

CVE-2014-5516 CSRF protection bypass in "KonaKart" Java eCommerce product

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 CVE-2014-5516 =================== "Cross-Site Request Forgery CSRF protection bypass" CWE-352 vulnerability in "KonaKart Storefront Application" Enterprise Java eCommerce product Vendor =================== DS Data Systems UK Ltd. Product...

0.7AI score0.00153EPSS

Exploits1

Packet Storm•added 2014/09/22 12:0 a.m.•50 views

KonaKart Storefront Application Cross Site Request Forgery

3.7CVSS0.2AI score0.00153EPSS

Exploits1

Prion•added 2009/12/31 7:30 p.m.•21 views

Cross site scripting

Cross-site scripting XSS vulnerability in birt-viewer/run in Eclipse Business Intelligence and Reporting Tools BIRT before 2.5.0, as used in KonaKart and other products, allows remote attackers to inject arbitrary web script or HTML via the report parameter...

4.3CVSS6.2AI score0.03711EPSS

Exploits1References7Affected Software1

NVD•added 2009/12/31 7:30 p.m.•17 views

CVE-2009-4521

4.3CVSS6.9AI score0.03711EPSS

Exploits1References7

CVE•added 2009/12/31 7:0 p.m.•59 views

CVE-2009-4521

CVE-2009-4521 : Eclipse BIRT’s birt-viewer/run is vulnerable to cross-site scripting due to improper validation of user input via the __report parameter in BIRT versions before 2.5.0 (KonaKart and other products use BIRT). An attacker could inject arbitrary script/HTML that executes in the victim...

4.3CVSS6.7AI score0.03711EPSS

Exploits1References7Affected Software1

Packet Storm•added 2009/10/15 12:0 a.m.•34 views

Eclipse BIRT 2.2.1 Cross Site Scripting

Eclipse BIRT &r=-703171660 HTTP/1.1 Host: localhost:8780 User-Agent: Mozilla/5.0 Windows; U; Windows NT 5.1; en-US; rv:1.8.1.18 Gecko/20081029 Firefox/2.0.0.18 Accept: text/xml,application/xml,application/xhtml+xml,text/html;q=0.9,text/plain;q=0.8,image/png,/;q=0.5 Accept-Language: en-us,en;q=0.5...

7.4AI score

Exploits0

0day.today•added 2009/10/15 12:0 a.m.•44 views

Eclipse BIRT <= 2.2.1 xss

Exploit for unknown platform in category web applications ========================= Eclipse BIRT &r=-703171660 HTTP/1.1 Host: localhost:8780 User-Agent: Mozilla/5.0 Windows; U; Windows NT 5.1; en-US; rv:1.8.1.18 Gecko/20081029 Firefox/2.0.0.18 Accept:...

7.1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by