Lucene search
K

72 matches found

CVE
CVE
added 2014/07/28 3:0 p.m.35 views

CVE-2014-5105

The CVE-2014-5105 entry concerns OL-Commerce 2.1.1 with two reflected XSS vectors: (1) a_country in process action to affiliate_signup.php and (2) entry_country_id in edit action to admin/create_account.php. The underlying issue is cross-site scripting due to unsanitized input in these parameters...

4.3CVSS5.8AI score0.01427EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2014/07/28 3:0 p.m.44 views

CVE-2014-5104

CVE-2014-5104 affects ol-commerce 2.1.1 and involves multiple SQL injection vulnerabilities in PHP scripts: affiliate_signup.php (a_country), affiliate_show_banner.php (affiliate_banner_id), create_account.php (country), and admin/create_account.php (entry_country_id). The root cause is improper ...

7.5CVSS8.7AI score0.02144EPSS
Exploits1References2Affected Software1
0day.today
0day.today
added 2014/07/18 12:0 a.m.36 views

OL-Commerce 2.1.1 Cross Site Scripting / SQL Injection Vulnerabilities

OL-Commerce version 2.1.1 suffers from cross site scripting and remote SQL injection vulnerabilities. OL-Commerce v2.1.1 - Multiple Vulnerabilties =================================================================== .:. Author : AtT4CKxT3rR0r1ST .:. Contact : email protected , email protected .:...

7.9AI score
Exploits0
exploitpack
exploitpack
added 2014/07/17 12:0 a.m.18 views

Fonality trixbox - index.php Remote Code Execution

Fonality trixbox - index.php Remote Code Execution source: https://www.securityfocus.com/bid/68719/info ol-commerce is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these...

Exploits0
Packet Storm
Packet Storm
added 2014/07/17 12:0 a.m.33 views

OL-Commerce 2.1.1 Cross Site Scripting / SQL Injection

OL-Commerce v2.1.1 - Multiple Vulnerabilties =================================================================== .:. Author : AtT4CKxT3rR0r1ST .:. Contact : [email protected] , [email protected] .:. Home : http://www.iphobos.com/blog/ .:. Script :...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2014/07/17 12:0 a.m.15 views

OL-Commerce - OL-Commercecreate_account.php?country SQL Injection

OL-Commerce - OL-Commercecreateaccount.php?country SQL Injection source: https://www.securityfocus.com/bid/68719/info ol-commerce is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input...

0.6AI score
Exploits0
exploitpack
exploitpack
added 2014/07/17 12:0 a.m.14 views

OL-Commerce - OL-Commerceaffiliate_signup.php?a_country SQL Injection

OL-Commerce - OL-Commerceaffiliatesignup.php?acountry SQL Injection source: https://www.securityfocus.com/bid/68719/info ol-commerce is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2014/07/17 12:0 a.m.14 views

OL-Commerce - OL-Commerceadmincreate_account.php?entry_country_id SQL Injection

OL-Commerce - OL-Commerceadmincreateaccount.php?entrycountryid SQL Injection source: https://www.securityfocus.com/bid/68719/info ol-commerce is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplie...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2014/07/17 12:0 a.m.12 views

Fonality trixbox - asterisk_info.php Directory Traversal

Fonality trixbox - asteriskinfo.php Directory Traversal source: https://www.securityfocus.com/bid/68719/info ol-commerce is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2014/07/17 12:0 a.m.14 views

OL-Commerce - OL-Commerceaffiliate_show_banner.php?affiliate_banner_id SQL Injection

OL-Commerce - OL-Commerceaffiliateshowbanner.php?affiliatebannerid SQL Injection source: https://www.securityfocus.com/bid/68719/info ol-commerce is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2014/07/17 12:0 a.m.15 views

Fonality trixbox - endpointcfg.php Directory Traversal

Fonality trixbox - endpointcfg.php Directory Traversal source: https://www.securityfocus.com/bid/68719/info ol-commerce is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting...

0.3AI score
Exploits0
exploitpack
exploitpack
added 2014/07/17 12:0 a.m.17 views

Fonality trixbox - repo.php Directory Traversal

Fonality trixbox - repo.php Directory Traversal source: https://www.securityfocus.com/bid/68719/info ol-commerce is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2014/07/17 12:0 a.m.35 views

OL-Commerce - '/OL-Commerce/affiliate_show_banner.php?affiliate_banner_id' SQL Injection

source: https://www.securityfocus.com/bid/68719/info ol-commerce is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2014/07/17 12:0 a.m.27 views

OL-Commerce - '/OL-Commerce/affiliate_signup.php?a_country' SQL Injection

source: https://www.securityfocus.com/bid/68719/info ol-commerce is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2014/07/17 12:0 a.m.50 views

OL-Commerce - '/OL-Commerce/admin/create_account.php?entry_country_id' SQL Injection

source: https://www.securityfocus.com/bid/68719/info ol-commerce is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2014/07/17 12:0 a.m.29 views

OL-Commerce - '/OL-Commerce/create_account.php?country' SQL Injection

source: https://www.securityfocus.com/bid/68719/info ol-commerce is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2014/07/17 12:0 a.m.33 views

Fonality trixbox - 'endpointcfg.php' Directory Traversal

source: https://www.securityfocus.com/bid/68719/info ol-commerce is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2014/07/17 12:0 a.m.21 views

Fonality trixbox - 'index.php' Remote Code Execution

source: https://www.securityfocus.com/bid/68719/info ol-commerce is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2014/07/17 12:0 a.m.37 views

Fonality trixbox - 'index.php' Directory Traversal

source: https://www.securityfocus.com/bid/68719/info ol-commerce is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2014/07/17 12:0 a.m.27 views

Fonality trixbox - 'asterisk_info.php' Directory Traversal

source: https://www.securityfocus.com/bid/68719/info ol-commerce is prone to multiple SQL-injection vulnerabilities and multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting these vulnerabilities could allow an attacker to steal...

7.4AI score
Exploits0
Rows per page
Query Builder