EUVD-2017-8758

Malware in sbrugna...

mscashdrawer.com XSS vulnerability

Open Bug Bounty ID: OBB-470312 Description| Value ---|--- Affected Website:| mscashdrawer.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS Prevention Cheat...

Sql injection

Basic B2B Script 2.0.8 has SQL Injection via the productdetails.php id parameter...

CVE-2017-17600

Basic B2B Script 2.0.8 has SQL Injection via the productdetails.php id parameter...

CVE-2017-17600

CVE-2017-17600 affects Basic B2B Script 2.0.8, with a SQL Injection vulnerability via the id parameter in product_details.php. The root cause is unsafe handling of the id input that enables injection of SQL commands. This vulnerability has a high impact in CVSS terms (confidentiality, integrity, ...

CMS Aspect Web Design SQL Injection

Title : CMS Aspect Web Design SQL INJECTION Software : http://www.aspect.co.im/ Date : 08/24/2009 Author : R3VANBASTARD Contact : r3vanatsux0r.net Blog : http://sux0r.net oVulnerable file /productdetails.php?ProductID= Note:"sometime location for the Vulnerability not same" o Exploit...

FreznoShop 1.3.0 SQL Injection

====================================================================================== o FreznoShop 1.3.0 SQL Injection Vulnerability Software : FreznoShop version 1.3.0 Vendor : http://sourceforge.net/projects/freznoshop/ Download : http://sourceforge.net/project/platformdownload.php?groupid=860...

FreznoShop 1.3.0 (id) Remote SQL Injection Vulnerability

No description provided by source. ====================================================================================== o FreznoShop 1.3.0 SQL Injection Vulnerability Software : FreznoShop version 1.3.0 Vendor : http://sourceforge.net/projects/freznoshop/ Download :...

FreznoShop 1.3.0 - id SQL Injection

FreznoShop 1.3.0 - id SQL Injection ====================================================================================== o FreznoShop 1.3.0 SQL Injection Vulnerability Software : FreznoShop version 1.3.0 Vendor : http://sourceforge.net/projects/freznoshop/ Download :...

FreznoShop 1.3.0 (id) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ======================================================== FreznoShop 1.3.0 id Remote SQL Injection Vulnerability ========================================================...

FreznoShop 1.3.0 - 'id' SQL Injection

====================================================================================== o FreznoShop 1.3.0 SQL Injection Vulnerability Software : FreznoShop version 1.3.0 Vendor : http://sourceforge.net/projects/freznoshop/ Download : http://sourceforge.net/project/platformdownload.php?groupid=860...

Sql injection

SQL injection vulnerability in productdetails.php in the Mytipper Zogo-shop 1.15.4 plugin for e107 allows remote attackers to execute arbitrary SQL commands via the product parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in Netrix X-Site Manager allows remote attackers to inject arbitrary web script or HTML via the productid parameter, as originally demonstrated for a custom mp3playersdetails.php program. NOTE: the name of the affected program might be installation-dependent...