EUVD-2008-7067

Malware in sbrugna...

PHPCart 3.1.2 'search.php' Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/37567/info PHPCart is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the brows...

PHPCart Input Validation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13406/info PHPCart is prone to a remote input validation vulnerability. The issue exists because the software fails to sufficiently sanitize URI parameter data that is employed when computing product charges. A remote...

PHPCart 3.1.2 Cross Site Scripting

======================================================================================== | Title : PHPCart.v3.1.2 Cross Site Scripting Vulnerability | Author : indoushka | email : [email protected] | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | Total alerts found :...

PHPCart 3.1.2 - 'search.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/37567/info PHPCart is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

PHPCart 3.1.2 - search.php Cross-Site Scripting

PHPCart 3.1.2 - search.php Cross-Site Scripting source: https://www.securityfocus.com/bid/37567/info PHPCart is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script cod...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Carmosa phpCart 3.4 through 4.6.4 allow remote attackers to inject arbitrary web script or HTML via the 1 quantity or 2 Add Engraving fields to the default URI; 3 Quantity field to phpcart.php; 4 Name, 5 Company, 6 Address, 7 City, and 8...

CVE-2008-7108

Multiple cross-site scripting XSS vulnerabilities in Carmosa phpCart 3.4 through 4.6.4 allow remote attackers to inject arbitrary web script or HTML via the 1 quantity or 2 Add Engraving fields to the default URI; 3 Quantity field to phpcart.php; 4 Name, 5 Company, 6 Address, 7 City, and 8...

CVE-2008-7108

CVE-2008-7108 details from the provided sources show multiple cross-site scripting (XSS) vulnerabilities in Carmosa phpCart versions 3.4 through 4.6.4. The described vectors include user-supplied input in the default URI (fields: quantity, Add Engraving), and in phpcart.php (fields: Quantity, Nam...

CVE-2008-7108

Multiple cross-site scripting XSS vulnerabilities in Carmosa phpCart 3.4 through 4.6.4 allow remote attackers to inject arbitrary web script or HTML via the 1 quantity or 2 Add Engraving fields to the default URI; 3 Quantity field to phpcart.php; 4 Name, 5 Company, 6 Address, 7 City, and 8...

XSS and Data Manipulation attacks found in CMS PHPCart.

. . | / | | | / / | |/ // / / / |/ / // | / | | / / / // / |/| || /| / / / / / / / / | | / / / | // est.2007 / / forum.darkc0de.com -d3hydr8 - sinner01 - baltazar - P47r1ck - C1c4Tr1Z - beenu -rsauron - letsgorun - K1u - DON - OutLawz - MAGE -JeTFyrE -r45c4l -Bond Author: h4x0r Home :...

phpcart-xss.txt

. . | / | | \ \ | / / |\ \ \ |/ // / /\ \ / |/ \ / // | / | | / \ /|\ / / / / \ / \ / / / \ | | /\ /\ / \ | \ // est.2007 / / forum.darkc0de.com -d3hydr8 - sinner01 - baltazar - P47r1ck - C1c4Tr1Z - beenu -rsauron - letsgorun - K1u - DON - OutLawz - MAGE -JeTFyrE -r45c4l -Bond...

CVE-2005-1398

phpcart.php in PHPCart 3.2 allows remote attackers to change product price information by modifying the 1 price or 2 postage parameters. NOTE: it was later reported that 3.4 through 4.6.4 are also affected...

CVE-2005-1398

PHPCart vulnerability CVE-2005-1398 affects PHPCart 3.2 (and note: 3.4–4.6.4 later reported) where remote attackers can alter price information by modifying (1) price or (2) postage parameters. The NVD entry lists a CVSS v2 base score of 5.0 (Medium) with network access, no authentication, and pa...

CVE-2005-1398

phpcart.php in PHPCart 3.2 allows remote attackers to change product price information by modifying the 1 price or 2 postage parameters. NOTE: it was later reported that 3.4 through 4.6.4 are also affected...

PHPCart - Input Validation

source: https://www.securityfocus.com/bid/13406/info PHPCart is prone to a remote input validation vulnerability. The issue exists because the software fails to sufficiently sanitize URI parameter data that is employed when computing product charges. A remote attacker may exploit this issue to...

PHPCart - Input Validation

PHPCart - Input Validation source: https://www.securityfocus.com/bid/13406/info PHPCart is prone to a remote input validation vulnerability. The issue exists because the software fails to sufficiently sanitize URI parameter data that is employed when computing product charges. A remote attacker m...