Lucene search
+L

6 matches found

NVD
NVD
added 2005/05/02 4:0 a.m.19 views

CVE-2005-1004

Cross-site scripting XSS vulnerability in usrdetails.php in ProfitCode PayProCart 3.0 allows remote attackers to inject arbitrary web script or HTML via the sgnuptype parameter...

4.3CVSS5.7AI score0.03973EPSS
Exploits1References4
Packet Storm
Packet Storm
added 2005/04/17 12:0 a.m.27 views

PayProCart30.txt

This is a multi-part message in MIME format. ------=NextPart000000601C5395C.BF487B20 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Dcrab 's Security Advisory Hsc Security Group http://www.hackerscenter.com/...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2005/04/07 4:0 a.m.20 views

CVE-2005-1004

Cross-site scripting XSS vulnerability in usrdetails.php in ProfitCode PayProCart 3.0 allows remote attackers to inject arbitrary web script or HTML via the sgnuptype parameter...

5.7AI score0.03973EPSS
Exploits1References4
CVE
CVE
added 2005/04/07 4:0 a.m.49 views

CVE-2005-1004

The CVE-2005-1004 issue affects ProfitCode PayProCart 3.0, where an XSS flaw exists in usrdetails.php exploitable via the sgnuptype parameter. The vulnerability is reflected XSS with no authentication, allowing an attacker to inject script/html in the context of the victim’s browser (I:P, C:N). I...

4.3CVSS5.7AI score0.03973EPSS
Exploits1References4Affected Software1
Exploit DB
Exploit DB
added 2005/04/05 12:0 a.m.28 views

profitcode software payprocart 3.0 - Directory Traversal

source: https://www.securityfocus.com/bid/13006/info ProfitCode Software PayProCart may allow a remote attacker to carry out directory traversal attacks. It is reported that this issue can be exploited by issuing a specially crafted HTTP GET request and supplying directory traversal sequences...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2005/04/05 12:0 a.m.30 views

Authenticaion bypass, Directory transversal and XSS vulnerabilities in PayProCart 3.0 - Profitcode Software

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Dcrab 's Security Advisory Hsc Security Group http://www.hackerscenter.com/ dP Security http://digitalparadox.org/ Get Dcrab's Services to audit your Web servers, scripts, networks, etc. Learn more at http://www.digitalparadox.org/services.ah Severity...

6.6AI score
Exploits0
Rows per page
Query Builder