CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

77 matches found

0day.today•added 2013/01/10 12:0 a.m.•36 views

Quick.Cms 5.0 / Quick.Cart 6.0 Cross Site Scripting Vulnerability

Quick.Cms version 5.0 and Quick.Cart version 6.0 suffer from a cross site scripting vulnerability. Product: Quick.Cms, Quick.Cart Vendor: OpenSolution team Vulnerable Versions: Quick.Cms 5.0, Quick.Cart 6.0 and probably prior Tested Version: Quick.Cms 5.0, Quick.Cart 6.0 Vendor Notification:...

4.3CVSS6.2AI score0.10931EPSS

Exploits3

securityvulns•added 2013/01/10 12:0 a.m.•68 views

Cross-Site Scripting (XSS) vulnerability in Quick.Cms and Quick.Cart

Advisory ID: HTB23135 Product: Quick.Cms, Quick.Cart Vendor: OpenSolution team Vulnerable Versions: Quick.Cms 5.0, Quick.Cart 6.0 and probably prior Tested Version: Quick.Cms 5.0, Quick.Cart 6.0 Vendor Notification: December 19, 2012 Vendor Patch: December 20, 2012 Public Disclosure: January 9,...

4.3CVSS6.1AI score0.10931EPSS

Exploits3

Packet Storm•added 2013/01/10 12:0 a.m.•48 views

Quick.Cms 5.0 / Quick.Cart 6.0 Cross Site Scripting

4.3CVSS6.6AI score0.10931EPSS

Exploits3

htbridge•added 2012/12/19 12:0 a.m.•32 views

Cross-Site Scripting (XSS) vulnerability in Quick.Cms and Quick.Cart

High-Tech Bridge Security Research Lab discovered XSS vulnerability in Quick.Cms and Quick.Cart - two products developed by OpenSolution team, which can be exploited to perform cross-site scripting attacks. 1. Cross-Site Scripting XSS vulnerability in Quick.Cms and Quick.Cart: CVE-2012-6430 The...

4.3CVSS5.4AI score0.10931EPSS

Exploits3Affected Software1

Packet Storm•added 2009/11/24 12:0 a.m.•29 views

Quick.Cart / Quick.CMS XSRF

Systems Affected: Quick.Cart 3.4 other versions untested, Quick.CMS 2.4 other versions untested Severity: Medium Vendor: http://opensolution.org/ Author: Alice Kaerast 0. Timeline 25-10-2009 Vulnerability discovered 26-10-2009 Vendor contacted 23-11-2009 No response from vendor, report published ...

0.1AI score

Exploits0

NVD•added 2008/09/24 5:41 a.m.•10 views

CVE-2008-4139

Cross-site scripting XSS vulnerability in admin.php in OpenSolution Quick.Cms.Lite 2.1 allows remote attackers to inject arbitrary web script or HTML via the query string...

2.6CVSS5.7AI score0.0029EPSS

Exploits1References4

Prion•added 2008/09/24 5:41 a.m.•6 views

Cross site scripting

Cross-site scripting XSS vulnerability in admin.php in OpenSolution Quick.Cms.Lite 2.1 allows remote attackers to inject arbitrary web script or HTML via the query string...

2.6CVSS6.1AI score0.0029EPSS

Exploits1References4Affected Software1

securityvulns•added 2008/09/20 12:0 a.m.•52 views

[NOBYTES.COM: #13] Quick.Cart v3.1 Freeware - Cross Site Scripting

Application: Quick.Cart v3.1 Freeware Authors Site: http://opensolution.org/quick.cart,en,9.html +--------------------------------------------------------------+ XSS: http://www.victim.com/admin.php?"scriptalertdocument.cookie/script" +-Notes:-----------------------------------------------------+...

0.5AI score

Exploits0

CVE•added 2008/09/19 6:0 p.m.•31 views

CVE-2008-4139

CVE-2008-4139 describes a Cross-site Scripting (XSS) vulnerability in OpenSolution Quick.Cms.Lite 2.1, specifically in admin.php, where an attacker can inject arbitrary script/HTML via the query string. The available sources confirm the affected component but do not provide details on root cause ...

2.6CVSS5.7AI score0.0029EPSS

Exploits1References4Affected Software1

Cvelist•added 2008/09/19 6:0 p.m.•13 views

CVE-2008-4139

Cross-site scripting XSS vulnerability in admin.php in OpenSolution Quick.Cms.Lite 2.1 allows remote attackers to inject arbitrary web script or HTML via the query string...

5.7AI score0.0029EPSS

Exploits1References4

NVD•added 2007/03/10 10:19 p.m.•12 views

CVE-2007-1407

Unspecified vulnerability in OpenSolution Quick.Cart before 2.1 has unknown impact and attack vectors, related to a "low critical exploit."...

7.5CVSS6.5AI score0.00394EPSS

Exploits0References2

Prion•added 2007/03/10 10:19 p.m.•10 views

Design/Logic Flaw

Unspecified vulnerability in OpenSolution Quick.Cart before 2.1 has unknown impact and attack vectors, related to a "low critical exploit."...

7.5CVSS7.1AI score0.00394EPSS

Exploits0References2Affected Software1

Cvelist•added 2007/03/10 10:0 p.m.•15 views

CVE-2007-1407

Unspecified vulnerability in OpenSolution Quick.Cart before 2.1 has unknown impact and attack vectors, related to a "low critical exploit."...

6.5AI score0.00394EPSS

Exploits0References2

CVE•added 2007/03/10 10:0 p.m.•44 views

CVE-2007-1407

Technical details for CVE-2007-1407 are not publicly available in the provided connected documents. Monitor for updates; current sources reiterate an unspecified vulnerability in OpenSolution Quick.Cart before 2.1 with unclear impact and vectors.

7.5CVSS6.5AI score0.00394EPSS

Exploits0References2Affected Software1

NVD•added 2006/11/10 1:7 a.m.•10 views

CVE-2006-5834

Directory traversal vulnerability in general.php in OpenSolution Quick.Cms.Lite 0.3 allows remote attackers to include arbitrary files via a .. dot dot sequence in the sLanguage Cookie parameter...

5CVSS6.7AI score0.0573EPSS

Exploits1References5

CVE•added 2006/11/10 1:0 a.m.•39 views

CVE-2006-5834

OpenSolution Quick.Cms.Lite 0.3 is affected by a directory traversal vulnerability in general.php, exploitable via the sLanguage cookie parameter to include arbitrary files. Root cause: improper handling of the cookie value enables traversal sequences (..), leading to potential unauthorized file ...

5CVSS7.1AI score0.0573EPSS

Exploits1References5Affected Software1

Cvelist•added 2006/11/10 1:0 a.m.•16 views

CVE-2006-5834

Directory traversal vulnerability in general.php in OpenSolution Quick.Cms.Lite 0.3 allows remote attackers to include arbitrary files via a .. dot dot sequence in the sLanguage Cookie parameter...

6.7AI score0.0573EPSS

Exploits1References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by