13 matches found
EUVD-2010-1876
Malware in sbrugna...
EUVD-2010-1877
Malware in sbrugna...
CVE-2010-1856
Cross-site scripting XSS vulnerability in index.php in RepairShop2 1.9.023 Trial, when magicquotesgpc is disabled, allows remote attackers to inject arbitrary web script or HTML via the prod parameter in a products.details action...
RepairShop2 index.php Prod Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/38907/info RepairShop 2 is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, control how th...
CVE-2010-1857
SQL injection vulnerability in index.php in RepairShop2 1.9.023 Trial, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the prod parameter in a products.details action. NOTE: the provenance of this information is unknown; the details are obtained sole...
Cross site scripting
Cross-site scripting XSS vulnerability in index.php in RepairShop2 1.9.023 Trial, when magicquotesgpc is disabled, allows remote attackers to inject arbitrary web script or HTML via the prod parameter in a products.details action...
Sql injection
SQL injection vulnerability in index.php in RepairShop2 1.9.023 Trial, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the prod parameter in a products.details action. NOTE: the provenance of this information is unknown; the details are obtained sole...
CVE-2010-1857
CVE-2010-1857 affects RepairShop2 1.9.023 Trial, in which a vulnerability in index.php (products.details action) allows SQL injection when magic_quotes_gpc is disabled. The underlying flaw is that user-controlled input in the prod parameter is not properly sanitized, enabling remote attackers to ...
CVE-2010-1857
SQL injection vulnerability in index.php in RepairShop2 1.9.023 Trial, when magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the prod parameter in a products.details action. NOTE: the provenance of this information is unknown; the details are obtained sole...
RepairShop2 - index.php?Prod Cross-Site Scripting
RepairShop2 - index.php?Prod Cross-Site Scripting source: https://www.securityfocus.com/bid/38907/info RepairShop 2 is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials...
RepairShop2 - 'index.php?Prod' Cross-Site Scripting
source: https://www.securityfocus.com/bid/38907/info RepairShop 2 is prone to an SQL-injection vulnerability and a cross-site scripting vulnerability. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, control how the site is rendered to the user,...
RepairShop2 Cross Site Scripting
RepairShop2 - cross site scripting XSS Author : kaMtiEz [email protected] Homepage : http://www.indonesiancoder.com Date : 20 March, 2010 Software Information + Vendor : http://www.realitymedias.com/ + Download : http://www.realitymedias.com/repairshop/?L=downloads + version : 1.9.023 +...
RepairShop2 - Cross Site Scripting (XSS) Vulnerability
Exploit for unknown platform in category web applications ====================================================== RepairShop2 - Cross Site Scripting XSS Vulnerability ====================================================== RepairShop2 - cross site scripting XSS Author : kaMtiEz email protected...