24 matches found
CVE-2008-6278
Multiple cross-site scripting XSS vulnerabilities in product.php in RakhiSoftware Price Comparison Script aka Shopping Cart allow remote attackers to inject arbitrary web script or HTML via the 1 categoryid and 2 subcategoryid parameters...
CVE-2008-6279
RakhiSoftware Price Comparison Script aka Shopping Cart allows remote attackers to obtain sensitive information via an invalid PHPSESSID cookie, which reveals the installation path in an error message...
EUVD-2008-6249
Malware in sbrugna...
EUVD-2008-6247
Malware in sbrugna...
EUVD-2008-6248
Malware in sbrugna...
RakhiSoftware Shopping Cart product.php Multiple Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/32563/info RakhiSoftware Shopping Cart is prone to multiple remote vulnerabilities. Exploiting these issues can allow attackers to obtain sensitive information, steal cookie data, access or modify data, or exploit latent...
RakhiSoftware Shopping Cart PHPSESSID Cookie Manipulation Path Disclosure
No description provided by source. source: http://www.securityfocus.com/bid/32563/info RakhiSoftware Shopping Cart is prone to multiple remote vulnerabilities. Exploiting these issues can allow attackers to obtain sensitive information, steal cookie data, access or modify data, or exploit latent...
Design/Logic Flaw
RakhiSoftware Price Comparison Script aka Shopping Cart allows remote attackers to obtain sensitive information via an invalid PHPSESSID cookie, which reveals the installation path in an error message...
Sql injection
SQL injection vulnerability in product.php in RakhiSoftware Price Comparison Script aka Shopping Cart allows remote attackers to execute arbitrary SQL commands via the subcategoryid parameter...
CVE-2008-6279
RakhiSoftware Price Comparison Script aka Shopping Cart allows remote attackers to obtain sensitive information via an invalid PHPSESSID cookie, which reveals the installation path in an error message...
CVE-2008-6277
SQL injection vulnerability in product.php in RakhiSoftware Price Comparison Script aka Shopping Cart allows remote attackers to execute arbitrary SQL commands via the subcategoryid parameter...
CVE-2008-6278
Multiple cross-site scripting XSS vulnerabilities in product.php in RakhiSoftware Price Comparison Script aka Shopping Cart allow remote attackers to inject arbitrary web script or HTML via the 1 categoryid and 2 subcategoryid parameters...
CVE-2008-6279
RakhiSoftware Price Comparison Script aka Shopping Cart allows remote attackers to obtain sensitive information via an invalid PHPSESSID cookie, which reveals the installation path in an error message...
CVE-2008-6278
The CVE-2008-6278 entry concerns RakhiSoftware Price Comparison Script (aka Shopping Cart). Affected component: product.php. Vulnerability: reflected cross-site scripting via two parameters, category_id and subcategory_id, allowing remote attackers to inject arbitrary web script or HTML. The root...
CVE-2008-6279
Vulnerability: RakhiSoftware Price Comparison Script (Shopping Cart) exposes installation path in error messages via an invalid PHPSESSID cookie, enabling remote disclosure of sensitive information. Affected: RakhiSoftware Price Comparison Script; root cause: PHPSESSID handling leads to error det...
CVE-2008-6277
CVE-2008-6277 describes an SQL injection vulnerability in the RakhiSoftware Price Comparison Script (aka Shopping Cart). The flaw is in the file product.php and is exploitable via the subcategory_id parameter, enabling a remote attacker to execute arbitrary SQL commands. This AV:N/AC:L/ Au:N/C:P/...
rakhi-sqlxssfpd.txt
Application: RakhiSoftware Shopping Cart Vendor Name: RakhiSoftware Vendors Url: http://willscript.com/ Bug Type: RakhiSoftware Shopping Cart SQL,XSS,FPD Multiple Vulnerabilities SQL categoryid http://willscript.com/rjbikenew/product.php?categoryid=1+union%20select%20...
RakhiSoftware Shopping Cart - PHPSESSID Cookie Manipulation Full Path Disclosure
RakhiSoftware Shopping Cart - PHPSESSID Cookie Manipulation Full Path Disclosure source: https://www.securityfocus.com/bid/32563/info RakhiSoftware Shopping Cart is prone to multiple remote vulnerabilities. Exploiting these issues can allow attackers to obtain sensitive information, steal cookie...
RakhiSoftware Shopping Cart - PHPSESSID Cookie Manipulation Full Path Disclosure
source: https://www.securityfocus.com/bid/32563/info RakhiSoftware Shopping Cart is prone to multiple remote vulnerabilities. Exploiting these issues can allow attackers to obtain sensitive information, steal cookie data, access or modify data, or exploit latent vulnerabilities in the underlying...
RakhiSoftware Shopping Cart - 'product.php' Multiple Cross-Site Scripting Vulnerabilities
source: https://www.securityfocus.com/bid/32563/info RakhiSoftware Shopping Cart is prone to multiple remote vulnerabilities. Exploiting these issues can allow attackers to obtain sensitive information, steal cookie data, access or modify data, or exploit latent vulnerabilities in the underlying...