EUVD-2002-2280

Malware in sbrugna...

CVE-2002-2302

ShopFactory 5.5–5.8 (3D3.Com) is affected by CVE-2002-2302: remote attackers can modify prices in shopping carts by altering the price value in a hidden form field. The vulnerability arises from client-side price manipulation in the cart, enabling potential price integrity issues. The available s...

CVE-2002-2302

3D3.Com ShopFactory 5.5 through 5.8 allows remote attackers to modify the prices in their shopping carts by modifying the price in a hidden form field...

CVE-2002-2303

3D3.Com ShopFactory 5.8 uses client-side encryption and decryption for sensitive price data, which allows remote attackers to modify shopping cart prices by using the Javascript to decrypt the cookie that contains the data...

CVE-2002-2303

3D3.Com ShopFactory 5.8 is affected by a vulnerability where client-side encryption and decryption of sensitive price data enables remote attackers to modify shopping cart prices by using JavaScript to decrypt the cookie containing the data. This indicates a weakness in where price data is stored...

shopfactory shopping cart

Security advisory Issue: Shopfactory e-commerce application allows alteration of order details Date: 03/05/03 Vendor first notified: December 2002 Affected versions: All available versions current version Shopfactory 5.8 ABOUT SHOPFACTORY: Shopfactory is a shopping cart solution. According to the...