CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

seebug.org•added 2014/07/01 12:0 a.m.•18 views

ObieWebsite Mini Web Shop 2 order_form.php PATH_INFO Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/23847/info Mini Web Shop is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to steal cookie-based...

7.1AI score

Exploits0

NVD•added 2007/05/09 12:19 a.m.•8 views

CVE-2007-2532

Multiple cross-site scripting XSS vulnerabilities in Minh Nguyen Duong Obie Website Mini Web Shop 2 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO query string to 1 sendmail.php or 2 orderform.php, different vectors than CVE-2006-6734...

4.3CVSS5.6AI score0.11373EPSS

Exploits1References6

exploitpack•added 2007/05/02 12:0 a.m.•11 views

ObieWebsite Mini Web Shop 2 - order_form.php?PATH_INFO Cross-Site Scripting

ObieWebsite Mini Web Shop 2 - orderform.php?PATHINFO Cross-Site Scripting source: https://www.securityfocus.com/bid/23847/info Mini Web Shop is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploi...

6.8AI score

Exploits0

Exploit DB•added 2007/05/02 12:0 a.m.•22 views

ObieWebsite Mini Web Shop 2 - 'order_form.php?PATH_INFO' Cross-Site Scripting

source: https://www.securityfocus.com/bid/23847/info Mini Web Shop is prone to multiple cross-site scripting vulnerabilities because the application fails to sufficiently sanitize user-supplied input. An attacker can exploit these issues to steal cookie-based authentication credentials and launch...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by