6 matches found
Adv-20040216.txt
S-Quadra Advisory 2004-02-16 Topic: EarlyImpact ProductCart shopping cart software multiple security vulnerabilities Severity: High Vendor URL: http://www.earlyimpact.com Advisory URL: http://www.s-quadra.com/advisories/Adv-20040216.txt Release date: 16 Feb 2004 1. DESCRIPTION ProductCart is a...
ProductCart 1.x2.x - Custva.asp?redirectUrl Cross-Site Scripting
ProductCart 1.x2.x - Custva.asp?redirectUrl Cross-Site Scripting source: https://www.securityfocus.com/bid/9669/info EarlyImpact ProductCart is reportedly prone to multiple vulnerabilities. The specific issues include SQL injection, cross-site scripting and cryptographic weaknesses. These issues...
ProductCart 1.x/2.x - 'Custva.asp?redirectUrl' Cross-Site Scripting
source: https://www.securityfocus.com/bid/9669/info EarlyImpact ProductCart is reportedly prone to multiple vulnerabilities. The specific issues include SQL injection, cross-site scripting and cryptographic weaknesses. These issues could expose sensitive data such as user credentials and allow fo...
ProductCart 1.x/2.x - Weak Cryptography
source: https://www.securityfocus.com/bid/9669/info EarlyImpact ProductCart is reportedly prone to multiple vulnerabilities. The specific issues include SQL injection, cross-site scripting and cryptographic weaknesses. These issues could expose sensitive data such as user credentials and allow fo...
ProductCart 1.x/2.x - 'advSearch_h.asp' Multiple SQL Injections
source: https://www.securityfocus.com/bid/9669/info EarlyImpact ProductCart is reportedly prone to multiple vulnerabilities. The specific issues include SQL injection, cross-site scripting and cryptographic weaknesses. These issues could expose sensitive data such as user credentials and allow fo...
ProductCart Multiple Vulnerabilities
The remote host is using the ProductCart software suite. This set of CGIs is vulnerable to a SQL injection bug that could allow an attacker to take control of the server as an administrator. In addition, the application is susceptible various file disclosure and cross-site scripting attacks...