EUVD-2008-2897

Malware in sbrugna...

Conkurent PHPMyCart 1.3 Cross Site Scripting and Authentication Bypass Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/37553/info Conkurent PHPMyCart is prone to a cross-site scripting vulnerability and an authentication-bypass vulnerability. An attacker may leverage these issues to gain unauthorized access to the affected application and...

PHPMyCart 1.3 XSS / Bypass

======================================================================================== | Title : PHPMyCart 1.3 Multi Vulnerability | Author : indoushka | email : [email protected] | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 | Total alerts found : 2 | High : 1 |...

PHPMyCart 1.3 Multi Vulnerabilities

No description provided by source. ======================================================================================== | Title : PHPMyCart 1.3 Multi Vulnerability | Author : indoushka | email : [email protected] | Home : Souk Naamane - 04325 - Oum El Bouaghi - Algeria -00213771818860 |...

PHPMyCart 1.3 - Cross-Site Scripting Authentication Bypass

PHPMyCart 1.3 - Cross-Site Scripting Authentication Bypass source: https://www.securityfocus.com/bid/37553/info Conkurent PHPMyCart is prone to a cross-site scripting vulnerability and an authentication-bypass vulnerability. An attacker may leverage these issues to gain unauthorized access to the...

PHPMyCart 1.3 - Cross-Site Scripting / Authentication Bypass

source: https://www.securityfocus.com/bid/37553/info Conkurent PHPMyCart is prone to a cross-site scripting vulnerability and an authentication-bypass vulnerability. An attacker may leverage these issues to gain unauthorized access to the affected application and execute arbitrary script code in...

Sql injection

SQL injection vulnerability in shop.php in Conkurent PHPMyCart allows remote attackers to execute arbitrary SQL commands via the cat parameter...

CVE-2008-2904

SQL injection vulnerability in shop.php in Conkurent PHPMyCart allows remote attackers to execute arbitrary SQL commands via the cat parameter...

CVE-2008-2904

SQL injection vulnerability in shop.php in Conkurent PHPMyCart allows remote attackers to execute arbitrary SQL commands via the cat parameter...

CVE-2008-2904

CVE-2008-2904 describes an SQL injection in Conkurent PHPMyCart’s shop.php, exploitable via the cat parameter to allow remote execution of arbitrary SQL. Documents identify the affected software as PHPMyCart (Conkurent) and list a CVSS v2 base score of 7.5 (HIGH) with network access, low attack c...

PHPMyCart Injection Vulnerability

No description provided by source. PHPMyCart Injection Vulnerability Bug by: h0yt3r Script suffers from a not correctly verified category id variable which is used in SQL Querys. An Attacker can easily get sensitive information from the database by injecting unexpected SQL Querys. We dont get any...

phpmycart-sql.txt

PHPMyCart Injection Vulnerability Bug by: h0yt3r Script suffers from a not correctly verified category id variable which is used in SQL Querys. An Attacker can easily get sensitive information from the database by injecting unexpected SQL Querys. We dont get any SQL Errors when the Injection Quer...

PHPMyCart 1.3 - 'cat' SQL Injection

PHPMyCart Injection Vulnerability Bug by: h0yt3r Script suffers from a not correctly verified category id variable which is used in SQL Querys. An Attacker can easily get sensitive information from the database by injecting unexpected SQL Querys. We dont get any SQL Errors when the Injection Quer...

PHPMyCart (shop.php cat) Remote SQL Injection Vulnerability

No description provided by source. PHPMyCart Injection Vulnerability Bug by: h0yt3r Script suffers from a not correctly verified category id variable which is used in SQL Querys. An Attacker can easily get sensitive information from the database by injecting unexpected SQL Querys. We dont get any...

PHPMyCart 1.3 - cat SQL Injection

PHPMyCart 1.3 - cat SQL Injection PHPMyCart Injection Vulnerability Bug by: h0yt3r Script suffers from a not correctly verified category id variable which is used in SQL Querys. An Attacker can easily get sensitive information from the database by injecting unexpected SQL Querys. We dont get any...

PHPMyCart (shop.php cat) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications =========================================================== PHPMyCart shop.php cat Remote SQL Injection Vulnerability =========================================================== PHPMyCart Injection Vulnerability Bug by: h0yt3r Script suffe...

PHPMyCart (latest) is vulnerable to XSS

Talte Security Advisory 5 Product: PHPMyCart latest Url: http://phpmycart.com/ Type: XSS Cross Site Scripting Bug Found by: mircia & Talte Security Contacts: [email protected] Some scripts may be affected with Cross Site Scripting: Few Examples:...