5 matches found
EUVD-2008-2683
Malware in sbrugna...
Pilot Cart 7.2 Pilot.ASP SQL Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/21065/info Pilot Cart is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker to...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in ASPilot Pilot Cart 7.3 allow remote attackers to inject arbitrary web script or HTML via the 1 countrycode parameter to contact.asp, USERNAME parameter to 2 gateway.asp and 3 cart.asp, and the specific parameter to 4 quote.asp and 5 buyitnow...
ASPilot Pilot Cart 7.3 Cross Site Scripting / SQL Injection
Title: ASPilot Pilot Cart 7.3 multiple vulnerabilities Date: 07.11.2010 Author: Ariko-Security Software Link: http://www.pilotcart.com Version: 7.3 CVE Reference: CVE-2008-2688 only 1 SQL injection EDB-ID: 5765 only 1 SQL injection Ariko-Security: Security Audits , Audyt bezpieczeñstwa Advisory:...
Pilot Cart 7.2 - Pilot.asp SQL Injection
Pilot Cart 7.2 - Pilot.asp SQL Injection source: https://www.securityfocus.com/bid/21065/info Pilot Cart is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in an SQL query. A successful exploit could allow an attacker ...