29 matches found
EUVD-2008-5544
Malware in sbrugna...
EUVD-2010-1389
Malware in sbrugna...
PhPepperShop 1.4 index.php URL XSS
No description provided by source. source: http://www.securityfocus.com/bid/32690/info PhPepperShop is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the...
PhPepperShop 1.4 shop/Admin/shop_kunden_mgmt.php URL XSS
No description provided by source. source: http://www.securityfocus.com/bid/32690/info PhPepperShop is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the...
PhPepperShop 1.4 shop/Admin/SHOP_KONFIGURATION.php URL XSS
No description provided by source. source: http://www.securityfocus.com/bid/32690/info PhPepperShop is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the...
PhPepperShop 1.4 shop/kontakt.php URL XSS
source: http://www.securityfocus.com/bid/32690/info PhPepperShop is prone to multiple cross-site scripting vulnerabilities because it fails to sufficiently sanitize user-supplied data. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in...
PhPepperShop 2.5 'USER_ARTIKEL_HANDLING_AUFRUF.php' Cross-Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/37707/info PhPepperShop is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the...
CVE-2010-1361
Cross-site scripting XSS vulnerability in shop/USERARTIKELHANDLINGAUFRUF.php in PHPepperShop 2.5 allows remote attackers to inject arbitrary web script or HTML via the darstellen parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in shop/USERARTIKELHANDLINGAUFRUF.php in PHPepperShop 2.5 allows remote attackers to inject arbitrary web script or HTML via the darstellen parameter...
CVE-2010-1361
CVE-2010-1361 affects PHPepperShop 2.5. The vulnerability is a Cross‑Site Scripting (XSS) in shop/USER_ARTIKEL_HANDLING_AUFRUF.php, exploitable via the dargestellen parameter to inject arbitrary web script/HTML. Affected component: PHPepperShop 2.5 (web application). Root cause: unsanitized input...
CVE-2010-1361
Cross-site scripting XSS vulnerability in shop/USERARTIKELHANDLINGAUFRUF.php in PHPepperShop 2.5 allows remote attackers to inject arbitrary web script or HTML via the darstellen parameter...
PhPepperShop Webshop 2.5 (XSS) Cross Site Scripting Vulnerability
Exploit for unknown platform in category web applications ================================================================= PhPepperShop Webshop 2.5 XSS Cross Site Scripting Vulnerability =================================================================...
PHPepperShop 2.5 - USER_ARTIKEL_HANDLING_AUFRUF.php Cross-Site Scripting
PHPepperShop 2.5 - USERARTIKELHANDLINGAUFRUF.php Cross-Site Scripting source: https://www.securityfocus.com/bid/37707/info PhPepperShop is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to...
PhPepperShop Webshop 2.5 Cross Site Scripting
============================================================================== PhPepperShop Webshop 2.5 XSS Cross Site Scripting Vulnerability ============================================================================== + My home http://hack-tech.com + Date Submitted: January 12 2010 + Founder:...
PHPepperShop 2.5 - 'USER_ARTIKEL_HANDLING_AUFRUF.php' Cross-Site Scripting
source: https://www.securityfocus.com/bid/37707/info PhPepperShop is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in PHPepperShop 1.4 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 index.php or 2 shop/kontakt.php, or 3 shopkundenmgmt.php or 4 SHOPKONFIGURATION.php in shop/Admin/...
CVE-2008-5569
Multiple cross-site scripting XSS vulnerabilities in PHPepperShop 1.4 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 index.php or 2 shop/kontakt.php, or 3 shopkundenmgmt.php or 4 SHOPKONFIGURATION.php in shop/Admin/...
CVE-2008-5569
Multiple cross-site scripting XSS vulnerabilities in PHPepperShop 1.4 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 index.php or 2 shop/kontakt.php, or 3 shopkundenmgmt.php or 4 SHOPKONFIGURATION.php in shop/Admin/...
CVE-2008-5569
CVE-2008-5569 documents multiple cross-site scripting (XSS) vulnerabilities in PHPepperShop 1.4 . The issue arises from unsafely handling PATH_INFO, allowing remote attackers to inject arbitrary web script or HTML via requests to (1) index.php, (2) shop/kontakt.php, (3) shop_kunden_mgmt.php, or (...
XSS in PHPepperShop v 1.4
Vulnerable Version:PHPepperShop v 1.4 Homepage:http://www.phpeppershop.com This is 4 reflective XSS flaws in the URI. Trust no one not even your $SERVERPHPSELF http://10.1.1.10/shop/kontakt.php/'scriptalert1/script http://10.1.1.10/index.php/223Cscript3Ealert13C/script3E...