Lucene search
K

29 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-0523

Malware in sbrugna...

6.8CVSS6.4AI score0.02108EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2011-0524

Malware in sbrugna...

4.3CVSS6.4AI score0.04006EPSS
Exploits1References11
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

vam shop 1.69 - Multiple Vulnerabilities

No description provided by source. Product: VaM Shop Vendor: Vamsoft http://vamshop.ru/ Vulnerable Version: 1,69 and probably prior versions. Status: Not Fixed, Vendor Alerted, Awaiting Vendor Response Risk level: High Credit: Security Effect Teamhttp://seceffect.tumblr.com/ Vulnerability Details...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.25 views

vam shop 1.6 - Multiple Vulnerabilities

No description provided by source. Vulnerability ID: HTB22780 Reference: http://www.htbridge.ch/advisory/xsrfcsrfinvamshop.html Product: VaM Shop Vendor: Vamsoft http://vamshop.ru/ Vulnerable Version: 1.6 and Probably Prior Versions Vendor Notification: 28 December 2010 Vulnerability Type: CSRF...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2012/11/02 12:0 a.m.187 views

VaM Shop v1.69 - Multiple Web Vulnerabilities

Title: ====== VaM Shop v1.69 - Multiple Web Vulnerabilities Date: ===== 2012-10-24 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=730 VL-ID: ===== 730 Common Vulnerability Scoring System: ==================================== 8.1 Introduction: ============= Vendor...

8AI score
Exploits0
exploitpack
exploitpack
added 2012/10/31 12:0 a.m.15 views

vam shop 1.69 - Multiple Vulnerabilities

vam shop 1.69 - Multiple Vulnerabilities Product: VaM Shop Vendor: Vamsoft http://vamshop.ru/ Vulnerable Version: 1,69 and probably prior versions. Status: Not Fixed, Vendor Alerted, Awaiting Vendor Response Risk level: High Credit: Security Effect Teamhttp://seceffect.tumblr.com/ Vulnerability...

0.8AI score
Exploits0
Exploit DB
Exploit DB
added 2012/10/31 12:0 a.m.24 views

vam shop 1.69 - Multiple Vulnerabilities

Product: VaM Shop Vendor: Vamsoft http://vamshop.ru/ Vulnerable Version: 1,69 and probably prior versions. Status: Not Fixed, Vendor Alerted, Awaiting Vendor Response Risk level: High Credit: Security Effect Teamhttp://seceffect.tumblr.com/ Vulnerability Details: 1. Blind SQL injection in...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2012/10/30 12:0 a.m.28 views

VaM Shop 1.69 Cross Site Scripting / SQL Injection

Title: ====== VaM Shop v1.69 - Multiple Web Vulnerabilities Date: ===== 2012-10-24 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=730 VL-ID: ===== 730 Common Vulnerability Scoring System: ==================================== 8.1 Introduction: ============= Vendor...

0.5AI score
Exploits0
securityvulns
securityvulns
added 2012/10/29 12:0 a.m.132 views

VaM Shop Cross-Site Scripting and Blind SQL Injection Vulnerabilities

Product: VaM Shop Vendor: Vamsoft http://vamshop.ru/ Vulnerable Version: 1,69 and probably prior versions. Status: Not Fixed, Vendor Alerted, Awaiting Vendor Response Risk level: High Credit: Security Effect Teamhttp://seceffect.tumblr.com/ Vulnerability Details: 1. Blind SQL injection in...

0.3AI score
Exploits0
0day.today
0day.today
added 2012/10/24 12:0 a.m.21 views

VaM Shop 1.69 Cross Site Scripting / SQL Injection Vulnerabilities

VaM Shop version 1.69 suffers from cross site scripting and remote blind SQL injection vulnerabilities. Product: VaM Shop Vendor: Vamsoft http://vamshop.ru/ Vulnerable Version: 1,69 and probably prior versions. Status: Not Fixed, Vendor Alerted, Awaiting Vendor Response Risk level: High Credit:...

7.9AI score
Exploits0
Packet Storm
Packet Storm
added 2012/10/24 12:0 a.m.27 views

VaM Shop 1.69 Cross Site Scripting / SQL Injection

Product: VaM Shop Vendor: Vamsoft http://vamshop.ru/ Vulnerable Version: 1,69 and probably prior versions. Status: Not Fixed, Vendor Alerted, Awaiting Vendor Response Risk level: High Credit: Security Effect Teamhttp://seceffect.tumblr.com/ Vulnerability Details: 1. Blind SQL injection in...

0.7AI score
Exploits0
Vulnerability Lab
Vulnerability Lab
added 2012/10/23 12:0 a.m.15 views

VaM Shop v1.69 - Multiple Web Vulnerabilities

Document Title: =============== VaM Shop v1.69 - Multiple Web Vulnerabilities References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=730 Release Date: ============= 2012-10-23 Vulnerability Laboratory ID VL-ID: ==================================== 730 Common...

0.3AI score
Exploits0
NVD
NVD
added 2011/01/20 7:0 p.m.13 views

CVE-2011-0504

Multiple cross-site scripting XSS vulnerabilities in VaM Shop 1.6, 1.6.1, and probably earlier versions llow remote attackers to inject arbitrary web script or HTML via the 1 status parameter to admin/orders.php, 2 search parameter to admin/customers.php, or 3 STORENAME parameter to...

4.3CVSS5.8AI score0.04006EPSS
Exploits1References10
NVD
NVD
added 2011/01/20 7:0 p.m.19 views

CVE-2011-0503

Cross-site request forgery CSRF vulnerability in VaM Shop 1.6, 1.6.1, and probably earlier versions allows remote attackers to hijack the authentication of administrators for requests that 1 change user status via admin/customers.php or 2 change user permissions via admin/accounting.php. NOTE: so...

6.8CVSS7.1AI score0.02108EPSS
Exploits1References5
Prion
Prion
added 2011/01/20 7:0 p.m.18 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in VaM Shop 1.6, 1.6.1, and probably earlier versions allows remote attackers to hijack the authentication of administrators for requests that 1 change user status via admin/customers.php or 2 change user permissions via admin/accounting.php. NOTE: so...

6.8CVSS7.6AI score0.02108EPSS
Exploits1References5Affected Software1
Prion
Prion
added 2011/01/20 7:0 p.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in VaM Shop 1.6, 1.6.1, and probably earlier versions llow remote attackers to inject arbitrary web script or HTML via the 1 status parameter to admin/orders.php, 2 search parameter to admin/customers.php, or 3 STORENAME parameter to...

4.3CVSS6AI score0.04006EPSS
Exploits1References10Affected Software1
Cvelist
Cvelist
added 2011/01/20 6:0 p.m.24 views

CVE-2011-0504

Multiple cross-site scripting XSS vulnerabilities in VaM Shop 1.6, 1.6.1, and probably earlier versions llow remote attackers to inject arbitrary web script or HTML via the 1 status parameter to admin/orders.php, 2 search parameter to admin/customers.php, or 3 STORENAME parameter to...

5.8AI score0.04006EPSS
Exploits1References10
Cvelist
Cvelist
added 2011/01/20 6:0 p.m.22 views

CVE-2011-0503

Cross-site request forgery CSRF vulnerability in VaM Shop 1.6, 1.6.1, and probably earlier versions allows remote attackers to hijack the authentication of administrators for requests that 1 change user status via admin/customers.php or 2 change user permissions via admin/accounting.php. NOTE: so...

7.1AI score0.02108EPSS
Exploits1References5
CVE
CVE
added 2011/01/20 6:0 p.m.51 views

CVE-2011-0503

CVE-2011-0503 is a CSRF in VaM Shop (versions 1.6, 1.6.1 and likely earlier) where requests from an authenticated admin could change user status (admin/customers.php) or modify user permissions (admin/accounting.php). The root cause is insufficient validation of the request origin in several admi...

6.8CVSS7.3AI score0.02108EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2011/01/20 6:0 p.m.43 views

CVE-2011-0504

CVE-2011-0504 affects VaM Shop versions 1.6 and 1.6.1 (and possibly earlier). The issue is multiple cross-site scripting (XSS) vulnerabilities caused by insufficient input sanitization in admin/orders.php (parameter: status), admin/customers.php (parameter: search), and admin/configuration.php (p...

4.3CVSS5.9AI score0.04006EPSS
Exploits1References10Affected Software1
Rows per page
Query Builder