3 matches found
Order Override Vulnerability in Rice CMS
DAMI CMS is an all-in-one system for pc and mobile site building. Rice CMS v6.0.0 suffers from an order override vulnerability, which can be exploited by an attacker to grab order packets and change prices in an order to purchase a company product...
Worry-Free Shopping System ASP General Edition has multiple vulnerabilities
Hassle-free shopping system ASP General Edition is a shopping site based on ASP/Access development of general management system set up. Worry-Free Shopping System ASP General Edition is vulnerable to default database download, arbitrary user login, multiple stored cross-site scripts, payment desi...
doyocms parallel rights issue of disclosure orders-vulnerability warning-the black bar safety net
Order override view vulnerability The problem code is in source/member. php at function myorder if$this-syArgs'oid'||$this-syArgs'orderid',1!=" if$this-syArgs'oid'$r=array'id'=$this-syArgs'oid';else$r=array'orderid'=$this-syArgs'orderid',1; $this-order=syDB'order'-find$r;...