EUVD-2006-6994

Malware in sbrugna...

GP247 and S-Cart have a stored cross-site scripting (XSS) vulnerability

A stored cross-site scripting XSS vulnerability in the Admin Log Viewer of S-Cart =10.0.3 allows a remote authenticated attacker to inject arbitrary web script or HTML via a crafted User-Agent header. The script is executed in an administrator's browser when they view the security log page, which...

Cross-site Scripting (XSS)

Overview s-cart/core is a free Laravel e-commerce for business. Affected versions of this package are vulnerable to Cross-site Scripting XSS via the User-Agent header in the Admin Log Viewer. An attacker can execute arbitrary web scripts in an administrator's browser by injecting crafted input,...

PT-2025-39177

Name of the Vulnerable Software and Affected Versions S-Cart versions prior to 10.0.4 Description A stored cross-site scripting XSS issue exists in the Admin Log Viewer component. A remote, authenticated attacker can inject arbitrary web script or HTML through a manipulated User-Agent header. Whe...

MAL-2025-36449 Malicious code in test-mlw2-thymy-scart-motey-solum (npm)

The package test-mlw2-thymy-scart-motey-solum was found to contain malicious code...

GHSA-7PFC-CX3M-V22X SCart is vulnerable to cross-site scripting (XSS)

SCart e-commerce is a free open source for businesses, built on the Laravel framework. The package s-cart/s-cart before 6.9 and the package s-cart/core before 6.9 are vulnerable to cross-site Scripting XSS which can lead to cookie stealing of any victim that visits the affected URL. An attacker c...

SCart is vulnerable to cross-site scripting (XSS)

SCart e-commerce is a free open source for businesses, built on the Laravel framework. The package s-cart/s-cart before 6.9 and the package s-cart/core before 6.9 are vulnerable to cross-site Scripting XSS which can lead to cookie stealing of any victim that visits the affected URL. An attacker c...

CVE-2006-7012

scart.cgi in SCart 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the page parameter of a showtext action...

CVE-2006-7012

scart.cgi in SCart 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the page parameter of a showtext action...

CVE-2006-7012

CVE-2006-7012 affects the CGI script scart.cgi in SCart 2.0 . The vulnerability allows remote attackers to execute arbitrary commands by passing shell metacharacters in the page parameter of a show_text action, leading to full system compromise (high severity, network exposure). The provided docu...

CVE-2006-2813

Directory traversal vulnerability in easy-scart.cgi in iShopCart allows remote attackers to read arbitrary files via a .. dot dot in the query string...

adv32-K-159-2006.txt

\ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV32$2006 --------------------------------------------------------------------------- ECHOADV32$2006 SCart 2.0 Remote Code Execution ---------------------------------------------------------------------------...

SCart 2.0 - 'page' Remote Code Execution

!/usr/bin/perl SCart 2.0 Remote Code Execution Exploit Bugs Found & code By K-159 base on advisory at http://advisories.echo.or.id/adv/adv32-K-159-2006.txt echo.or.id c 2006 usage: perl scart.pl "cmd" Google Dork : site: scartserver.com Greetz: my soul...

SCart 2.0 (page) Remote Code Execution Exploit

No description provided by source. !/usr/bin/perl SCart 2.0 Remote Code Execution Exploit Bugs Found & code By K-159 base on advisory at http://advisories.echo.or.id/adv/adv32-K-159-2006.txt echo.or.id c 2006 usage: perl scart.pl target /path/ "cmd" Google Dork : site: scartserver.com Greetz: my...

SCart 2.0 (page) Remote Code Execution Exploit

Exploit for unknown platform in category web applications ============================================== SCart 2.0 page Remote Code Execution Exploit ============================================== !/usr/bin/perl SCart 2.0 Remote Code Execution Exploit Bugs Found & code By K-159 base on advisory a...

SCart 2.0 - page Remote Code Execution

SCart 2.0 - page Remote Code Execution !/usr/bin/perl SCart 2.0 Remote Code Execution Exploit Bugs Found & code By K-159 base on advisory at http://advisories.echo.or.id/adv/adv32-K-159-2006.txt echo.or.id c 2006 usage: perl scart.pl "cmd" Google Dork : site: scartserver.com Greetz: my soul...