26 matches found
CVE-1999-0607
quikstore.cgi in QuikStore shopping cart stores quikstore.cfg under the web document root with insufficient access control, which allows remote attackers to obtain the cleartext administrator password and gain privileges...
EUVD-1999-0590
Malware in sbrugna...
EUVD-2000-1173
Malware in sbrugna...
EUVD-2000-1205
Malware in sbrugna...
CVE-2000-1223
quikstore.cgi in Quikstore Shopping Cart allows remote attackers to execute arbitrary commands via shell metacharacters in the URL portion of an HTTP GET request...
iSoft-Solutions QuikStore Shopping Cart 2.12 template Parameter Directory Traversal Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9283/info It has been reported that QuikStore Shopping Cart may be prone to a directory traversal vulnerability that may allow an attacker to traverse outside the server root directory by using '../' character sequences...
iSoft-Solutions QuikStore Shopping Cart 2.12 store Parameter Path Disclosure Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9282/info It has been reported that QuikStore Shopping Cart may be prone to an information disclosure vulnerability due to insufficient sanitization of user-supplied data through the 'store' parameter of the 'quikstore.cg...
CVE-2000-1223
quikstore.cgi in Quikstore Shopping Cart allows remote attackers to execute arbitrary commands via shell metacharacters in the URL portion of an HTTP GET request...
CVE-2000-1223
CVE-2000-1223 affects Quikstore Shopping Cart: quikstore.cgi is vulnerable to remote command execution via shell metacharacters in the URL portion of an HTTP GET request. The issue enables arbitrary commands to be executed on the server. Connected sources (Red Hat advisory, CVE records, and NVD) ...
QuikStore Shopping Cart quikstore.cgi template Parameter Traversal Arbitrary File Access
The CGI 'quickstore.cgi' is installed. This CGI has a well known security flaw that lets an attacker read arbitrary files with the privileges of the HTTP daemon. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Ref: Date: Tue, 23 Dec 2003 20:27:51 +0800 From: DrPonidi Haryanto Subject:...
quikstore.txt
Indonesia Security Development Team Advisory QuikStore Shopping Cart Discloses Installation Path & Files to Remote Users ===================================================================== Advisory Name: QuikStore Shopping Cart Discloses Installation Path & Files to Remote Users Release Date:...
QuikStore Shopping Cart Discloses Installation Path & Files to Remote Users
Indonesia Security Development Team Advisory QuikStore Shopping Cart Discloses Installation Path & Files to Remote Users ===================================================================== Advisory Name: QuikStore Shopping Cart Discloses Installation Path & Files to Remote Users Release Date:...
iSoft-Solutions QuikStore Shopping Cart 2.12 - 'template' Directory Traversal
source: https://www.securityfocus.com/bid/9283/info It has been reported that QuikStore Shopping Cart may be prone to a directory traversal vulnerability that may allow an attacker to traverse outside the server root directory by using '../' character sequences. The issue exists due to insufficie...
iSoft-Solutions QuikStore Shopping Cart 2.12 - template Directory Traversal
iSoft-Solutions QuikStore Shopping Cart 2.12 - template Directory Traversal source: https://www.securityfocus.com/bid/9283/info It has been reported that QuikStore Shopping Cart may be prone to a directory traversal vulnerability that may allow an attacker to traverse outside the server root...
iSoft-Solutions QuikStore Shopping Cart 2.12 - store Full Path Disclosure
iSoft-Solutions QuikStore Shopping Cart 2.12 - store Full Path Disclosure source: https://www.securityfocus.com/bid/9282/info It has been reported that QuikStore Shopping Cart may be prone to an information disclosure vulnerability due to insufficient sanitization of user-supplied data through th...
Quikstore Shopping Cart quikstore.cgi Multiple Vulnerabilities
The CGI 'quickstore.cgi' is installed. This CGI has a well known security flaw that lets an attacker read arbitrary files with the privileges of the HTTP daemon. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; ifdescription scriptid10712...
CVE-2000-1188
Directory traversal vulnerability in Quikstore shopping cart program allows remote attackers to read arbitrary files via a .. dot dot attack in the "page" parameter...
Input validation error in quikstore.cgi allows attackers to execute commands
Overview The quikstore shopping cart script contains an input validation error that allows attackers to execute commands on affected web servers. Description The quikstore.cgi script is written in Perl and provides its users with shopping cart software for e-commerce transactions. In November 200...
CVE-2000-1188
CVE-2000-1188 : Quikstore Shopping Cart’s CGI (quikstore.cgi) is vulnerable to a directory traversal via the page parameter, enabling remote attackers to read arbitrary files. This aligns with NVD and Nessus notes and is complemented by CERT/CC and CVE history indicating input validation flaws in...
CVE-2000-1188
Directory traversal vulnerability in Quikstore shopping cart program allows remote attackers to read arbitrary files via a .. dot dot attack in the "page" parameter...