Unfixed XSS vulnerability at www.rammdev.com

Security researcher BackDoor, has submitted on 23/09/2007 a cross-site-scripting XSS vulnerability affecting www.rammdev.com, which at the time of submission ranked 1465019 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 24/09/2007. It is...

A-shop 0.70 - Remote File Deletion

A-shop =0.70 Multiple vulnerabilities Found Bug: Timq site:http://private-node.net email:[email protected] Vendor:http://www.rammdev.com/ashop/ PoC: http://site.com/admin/filebrowser.asp?folder=products&delfiles=del any file on server It is possible to delete not only the files in the folders...