Lucene search
K

161 matches found

xssed
xssed
added 2007/12/10 12:0 a.m.14 views

Unfixed XSS vulnerability at www.dotcomunderground.com

Security researcher Uber0n, has submitted on 12/10/2007 a cross-site-scripting XSS vulnerability affecting www.dotcomunderground.com, which at the time of submission ranked 39683 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 01/11/2007. It is...

6.6AI score
Exploits0References1
xssed
xssed
added 2007/12/10 12:0 a.m.11 views

Unfixed XSS vulnerability at www.dotcomunderground.com

Security researcher Uber0n, has submitted on 12/10/2007 a cross-site-scripting XSS vulnerability affecting www.dotcomunderground.com, which at the time of submission ranked 39683 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 01/11/2007. It is...

6.6AI score
Exploits0References1
Prion
Prion
added 2007/05/02 11:19 p.m.12 views

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools SunShop Shopping Cart 4.0 allow remote attackers to execute arbitrary PHP code via a URL in the abspath parameter to 1 include/payment/payflowpro.php, 2 global.php, or 3 libsecure.php, different vectors than CVE-2007-2070...

7.5CVSS7.8AI score0.09423EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2007/05/02 11:0 p.m.35 views

CVE-2007-2474

CVE-2007-2474 involves multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools SunShop Shopping Cart 4.0. The issue allows remote attackers to execute arbitrary PHP code via a URL in the abs_path parameter targeting files such as include/payment/payflow_pro.php, global.php, or lib...

7.5CVSS7.5AI score0.06163EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2007/04/18 3:19 a.m.15 views

Remote file inclusion

Multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools SunShop Shopping Cart before 3.5.1 allow remote attackers to execute arbitrary PHP code via a URL in the abspath parameter to 1 index.php or 2 checkout.php...

7.5CVSS7.8AI score0.09423EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2007/04/18 3:19 a.m.15 views

CVE-2007-2070

Multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools SunShop Shopping Cart before 3.5.1 allow remote attackers to execute arbitrary PHP code via a URL in the abspath parameter to 1 index.php or 2 checkout.php...

7.5CVSS7.5AI score0.09423EPSS
Exploits1References6
Cvelist
Cvelist
added 2007/04/18 2:20 a.m.27 views

CVE-2007-2070

Multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools SunShop Shopping Cart before 3.5.1 allow remote attackers to execute arbitrary PHP code via a URL in the abspath parameter to 1 index.php or 2 checkout.php...

7.5AI score0.09423EPSS
Exploits1References6
CVE
CVE
added 2007/04/18 2:20 a.m.47 views

CVE-2007-2070

Turnkey Web Tools SunShop Shopping Cart is affected by CVE-2007-2070 due to multiple PHP remote file inclusion vulnerabilities. The flaw allows an attacker to trigger arbitrary PHP code execution by supplying a crafted URL in the abs_path parameter to index.php or checkout.php. The issue affects ...

7.5CVSS7.5AI score0.09423EPSS
Exploits1References6Affected Software1
Exploit DB
Exploit DB
added 2007/04/16 12:0 a.m.45 views

SunShop Shopping Cart 3.5 - 'abs_path' Remote File Inclusion

sunshop 4 index.php Remote File Include Vulnerability ----------------------------------------------------------------------------------------- scripts : SunShop v3.5 Discovered By : irvian scripts site : http://www.turnkeywebtools.com/sunshop/ Thanks To : hitamputih nyubicrew patihack special To...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2006/12/05 12:0 a.m.22 views

PHP Simple Shop <= 2.0 (abs_path) Remote File Inclusion Vulnerability

No description provided by source. \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV44$2006 ------------------------------------------------------------------------------ ECHOADV44$2006 PHP Simple Shop = 2.0 abspath Remote File Inclusion...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2006/08/18 12:0 a.m.29 views

Echo Security Advisory 2006.44

ECHOADV44$2006 ------------------------------------------------------------------------------ ECHOADV44$2006 PHP Simple Shop = 2.0 abspath Remote File Inclusion ------------------------------------------------------------------------------ Author : Ahmad Maulana a.k.a Matdhule Date Found : August...

0.4AI score
Exploits0
NVD
NVD
added 2006/08/10 12:4 a.m.17 views

CVE-2006-4051

PHP remote file inclusion vulnerability in global.php in Turnkey Web Tools PHP Live Helper 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the abspath parameter...

7.5CVSS7.5AI score0.08144EPSS
Exploits1References7
NVD
NVD
added 2006/08/10 12:4 a.m.12 views

CVE-2006-4052

Multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools PHP Simple Shop 2.0 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the abspath parameter to 1 admin/index.php, 2 admin/adminindex.php, 3 admin/adminglobal.php, 4 admin/login.php, 5 admin/menu.ph...

7.5CVSS7.7AI score0.16119EPSS
Exploits1References13
Cvelist
Cvelist
added 2006/08/10 12:0 a.m.23 views

CVE-2006-4051

PHP remote file inclusion vulnerability in global.php in Turnkey Web Tools PHP Live Helper 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the abspath parameter...

7.5AI score0.08144EPSS
Exploits1References7
CVE
CVE
added 2006/08/10 12:0 a.m.120 views

CVE-2006-4051

The CVE-2006-4051 entry describes a PHP remote file inclusion in Turnkey Web Tools PHP Live Helper (versions 2.0 and earlier) where the abs_path parameter is not properly sanitized, allowing an attacker to supply a URL and execute arbitrary PHP code on the affected server. Connected advisories an...

7.5CVSS7.5AI score0.08144EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2006/08/10 12:0 a.m.18 views

CVE-2006-4052

Multiple PHP remote file inclusion vulnerabilities in Turnkey Web Tools PHP Simple Shop 2.0 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the abspath parameter to 1 admin/index.php, 2 admin/adminindex.php, 3 admin/adminglobal.php, 4 admin/login.php, 5 admin/menu.ph...

7.7AI score0.16119EPSS
Exploits1References13
CVE
CVE
added 2006/08/10 12:0 a.m.115 views

CVE-2006-4052

Turnkey Web Tools PHP Simple Shop 2.0 and earlier are affected by multiple PHP remote file inclusion vulnerabilities. The abs_path parameter in admin/index.php, admin/adminindex.php, admin/adminglobal.php, admin/login.php, admin/menu.php, and admin/header.php can be used to supply a URL that lead...

7.5CVSS7.7AI score0.16119EPSS
Exploits1References13Affected Software1
securityvulns
securityvulns
added 2006/08/08 12:0 a.m.32 views

[ECHO_ADV_44$2006] PHP Simple Shop <= 2.0 (abs_path) Remote File Inclusion

ECHOADV44$2006 ------------------------------------------------------------------------------ ECHOADV44$2006 PHP Simple Shop = 2.0 abspath Remote File Inclusion ------------------------------------------------------------------------------ Author : Ahmad Maulana a.k.a Matdhule Date Found : August...

0.8AI score
Exploits0
0day.today
0day.today
added 2006/08/07 12:0 a.m.27 views

PHP Live Helper <= 2.0 (abs_path) Remote File Inclusion Vulnerability

Exploit for unknown platform in category web applications ===================================================================== PHP Live Helper = 2.0 abspath Remote File Inclusion Vulnerability ===================================================================== \ /\ \ / | \ \ | / \ // / | \ |...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2006/08/07 12:0 a.m.26 views

PHP Simple Shop 2.0 - abs_path Remote File Inclusion

PHP Simple Shop 2.0 - abspath Remote File Inclusion \ /\ \ / | \ \ | / \ // / | \ | \ \ Y / | \ / / \ /| /\ / / / / / .OR.ID ECHOADV44$2006 ------------------------------------------------------------------------------ ECHOADV44$2006 PHP Simple Shop = 2.0 abspath Remote File Inclusion...

0.2AI score
Exploits0
Rows per page
Query Builder