Lucene search
K

5510 matches found

myhack58
myhack58
added 2009/08/14 12:0 a.m.15 views

Discuz! Account the issuance of the plug-in injection 0day-vulnerability warning-the black bar safety net

Discuz! Account the issuance of the plug-in injection 0day Plugin name:2Fly giftnumberpayment system 漏洞 文件 :2flygift.php Version:latest version Exp:http://www. xxx. com/2flygift. php? pages=content&gameid=1 6 and 1=2 union select 1,2,3,4,concatusername,0x3a,password,6,7,8,9,1 0,1 1,1 2,1 3,1 4,1...

1AI score
Exploits0
Packet Storm
Packet Storm
added 2009/08/06 12:0 a.m.19 views

Payment Processor Script Blind SQL Injection

PaymentProcessorScript.net R-Sql/B-Sql Multiple Vulns. ---------------------------------------------------------- Discovered By: ZoRLu msn: [email protected] Date: 04.01.09 Home: z0rlu.blogspot.com / www.experl.com N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : EN ONEMLi N0T: demolarI...

0.3AI score
Exploits0
seebug.org
seebug.org
added 2009/08/04 12:0 a.m.23 views

Payment Processor Script (shop.htm cid) SQL Injection Vulnerability

No description provided by source. PaymentProcessorScript.net R-Sql/B-Sql Multiple Vulns. ---------------------------------------------------------- Discovered By: ZoRLu msn: [email protected] Date: 04.01.09 Home: z0rlu.blogspot.com / www.experl.com N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIM...

7.1AI score
Exploits0
0day.today
0day.today
added 2009/08/03 12:0 a.m.51 views

Payment Processor Script (shop.htm cid) SQL Injection Vulnerability

Exploit for unknown platform in category web applications =================================================================== Payment Processor Script shop.htm cid SQL Injection Vulnerability =================================================================== PaymentProcessorScript.net R-Sql/B-Sq...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2009/08/03 12:0 a.m.16 views

Payment Processor Script (PPScript) - shop.htm cid SQL Injection

Payment Processor Script PPScript - shop.htm cid SQL Injection PaymentProcessorScript.net R-Sql/B-Sql Multiple Vulns. ---------------------------------------------------------- Discovered By: ZoRLu msn: [email protected] Date: 04.01.09 Home: z0rlu.blogspot.com / www.experl.com N0T: YALNIZLIK,...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2009/08/03 12:0 a.m.21 views

Payment Processor Script (PPScript) - 'shop.htm' SQL Injection

source: https://www.securityfocus.com/bid/42539/info PPScript is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data...

7AI score
Exploits0
Exploit DB
Exploit DB
added 2009/08/03 12:0 a.m.64 views

Payment Processor Script (PPScript) - 'shop.htm cid' SQL Injection

PaymentProcessorScript.net R-Sql/B-Sql Multiple Vulns. ---------------------------------------------------------- Discovered By: ZoRLu msn: [email protected] Date: 04.01.09 Home: z0rlu.blogspot.com / www.experl.com N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : EN ONEMLi N0T: demolarI...

7.4AI score
Exploits0
ThreatPost
ThreatPost
added 2009/06/19 3:25 p.m.11 views

New Security Standards for Mobile Payments Coming

From SC Magazine Angela Moscaritolo A financial services technology group is developing standards for making secure mobile payment transactions. The goal of the project, an effort of the Financial Services Technology Consortium FSTC, is to develop standards and processes so that banking customers...

1.8AI score
Exploits0References3
ThreatPost
ThreatPost
added 2009/06/18 7:54 p.m.14 views

Heartland CEO Says Data Breach Was 'Devastating'

From Computerworld Jaikumar Vijayan Heartland Payment Systems chief executive Robert Carr remembers what it felt like when he first heard about the massive data breach at his company earlier this year. “I wanted to throw up. It was devastating,” says Carr, recalling how he felt upon realizing tha...

0.8AI score
Exploits0References3
Prion
Prion
added 2009/06/12 6:0 p.m.12 views

Design/Logic Flaw

Unspecified vulnerability in the Finnish Bank Payment module 2.2 for osCommerce has unknown impact and attack vectors related to bank charges...

10CVSS7AI score0.01442EPSS
Exploits0References4
NVD
NVD
added 2009/06/12 6:0 p.m.20 views

CVE-2009-2038

Unspecified vulnerability in the Finnish Bank Payment module 2.2 for osCommerce has unknown impact and attack vectors related to bank charges...

10CVSS6.5AI score0.01442EPSS
Exploits0References4
CVE
CVE
added 2009/06/12 5:28 p.m.49 views

CVE-2009-2038

Technical details for CVE-2009-2038 are not publicly provided in the supplied documents. The available sources confirm an unspecified vulnerability in the Finnish Bank Payment module for osCommerce but do not disclose affected versions, impact, or remediation.

10CVSS6.6AI score0.01442EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2009/06/12 5:28 p.m.23 views

CVE-2009-2038

Unspecified vulnerability in the Finnish Bank Payment module 2.2 for osCommerce has unknown impact and attack vectors related to bank charges...

6.5AI score0.01442EPSS
Exploits0References4
Packet Storm
Packet Storm
added 2009/06/04 12:0 a.m.24 views

Host Directory PRO 2.1.0 Password Changer

change password Host Directory PRO 2.1.0 Configuration Web Interface Password Admin Email Receive Authorize.Net On Off Authorize login Authorize transactionKey...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2009/05/29 12:0 a.m.41 views

amember 3.1.7 - Cross-Site Scripting / SQL Injection / HTML Injection

AMember - Multiple Vulnerabilities Version Affected: 3.1.7 Apr-10-2009 newest Info: aMember is a flexible membership and subscription management PHP script. It has support for PayPal, BeanStream, 2Checkout, NoChex, VeriSign PayFlow, Authorize.Net, PaySystems, Probilling, Multicards, E-Gold and...

7.4AI score
Exploits0
ThreatPost
ThreatPost
added 2009/05/08 1:25 p.m.19 views

Data-sniffing attack costs Heartland $12.6m

From The Register Dan Goodin Electronic payments processor Heartland Payment Systems said Thursday it has allocated $12.6m to cover a security breach that exposed sensitive card holder data crossing its network. More than half that amount involves a fine MasterCard has assessed banks that did...

1AI score
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2009/04/22 9:30 p.m.5 views

CVE-2009-1366

Cross-site scripting XSS vulnerability in Website\admin\Sales\paypalipn.aspx in DotNetNuke DNN before 4.9.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "name/value pairs" and "paypal IPN functionality."...

4.3CVSS5.9AI score0.0103EPSS
Exploits0References4
seebug.org
seebug.org
added 2009/03/24 12:0 a.m.19 views

ECMall本地文件包含漏洞

$paycode = !empty$REQUEST'code' ? trim$REQUEST'code' : ''; ... $pluginfile = ROOTPATH . '/includes/payment/' . $paycode . '.php'; if isfile$pluginfile includeonce$pluginfile; 很明显的一个bug 利用的话可以参考flyh4t提到过http://bbs.wolvez.org/topic/56/的一个思路: ECMall 暂无...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2009/03/16 8:53 p.m.12 views

After data breach, Visa removes Heartland from PCI list

Credit card giant Visa has taken Heartland Payment Systems and RBS WorldPay off its list of service providers that are compliant with the PCI Data Security Standard. In a statement released Friday, Visa said it was removing the payment processors based on “compromise event findings.” RBS WorldPay...

2.6AI score
Exploits0References3
securityvulns
securityvulns
added 2008/09/01 12:0 a.m.188 views

XSS and Data Manipulation attacks found in CMS PHPCart.

. . | / | | | / / | |/ // / / / |/ / // | / | | / / / // / |/| || /| / / / / / / / / | | / / / | // est.2007 / / forum.darkc0de.com -d3hydr8 - sinner01 - baltazar - P47r1ck - C1c4Tr1Z - beenu -rsauron - letsgorun - K1u - DON - OutLawz - MAGE -JeTFyrE -r45c4l -Bond Author: h4x0r Home :...

0.2AI score
Exploits0
Rows per page
Query Builder