EUVD-2021-1465

Malware in sbrugna...

EUVD-2006-1897

Malware in sbrugna...

Malicious code in storeid (npm)

The package storeid was found to contain malicious code...

MAL-2025-34002 Malicious code in storeid (npm)

The package storeid was found to contain malicious code...

pimcore SQL Injection Vulnerability (CNVD-2021-50182)

Pimcore is Austria Pimcore company's set of open source for creating and managing Web applications Web content management platform. The platform integrates Web content management, e-commerce framework and product information management applications. An SQL injection vulnerability exists in pimcor...

CVE-2021-23405

This affects the package pimcore/pimcore before 10.0.7. This issue exists due to the absence of check on the storeId parameter in the method collectionsActionGet and groupsActionGet method within the ClassificationstoreController class...

SQL Injection

Overview pimcore/pimcore is a content & product management framework CMS/PIM/E-Commerce. Affected versions of this package are vulnerable to SQL Injection. This issue exists due to the absence of check on the storeId parameter in the method collectionsActionGet and groupsActionGet method within t...

everythingtrackandfield.com XSS vulnerability

Open Bug Bounty ID: OBB-427862 Description| Value ---|--- Affected Website:| everythingtrackandfield.com Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N Remediation Guide:| OWASP XSS...

CVE-2011-5112

SQL injection vulnerability in Alameda comalameda component before 1.0.1 for Joomla! allows remote attackers to execute arbitrary SQL commands via the storeid parameter to index.php...

Unfixed XSS vulnerability at www.safeway.com

Security researcher hopihavet, has submitted on 10/06/2010 a cross-site-scripting XSS vulnerability affecting www.safeway.com, which at the time of submission ranked 6859 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 13/01/2012. It is current...

Multi Vendor Mail itemdetail.php / shop.php SQL Injection

------------------------------------------------------------------------------------------- Multi Vendor Mall itemdetail.php & shop.php SQL Injection Vulnerability ------------------------------------------------------------------------------------------- Author: CoBRa21 Script Home:...

Design/Logic Flaw

Webplus aka talentsoft Web+Shop 5.3.6, when Redirect URL for "Script Not Found" Error is not configured, allows remote attackers to obtain sensitive information via a quote ' or possibly other invalid value in the storeid parameter in store.wml in webplus.exe, which reveals the path in a "Script...

CVE-2006-1897

Webplus aka talentsoft Web+Shop 5.3.6, when Redirect URL for "Script Not Found" Error is not configured, allows remote attackers to obtain sensitive information via a quote ' or possibly other invalid value in the storeid parameter in store.wml in webplus.exe, which reveals the path in a "Script...