20 matches found
EUVD-2006-1687
Malware in sbrugna...
EUVD-2006-1688
Malware in sbrugna...
XOS Shop 1.0.9 - (Multiple) Arbitrary File Deletion (Authenticated) Vulnerability
Exploit Title: XOS Shop 1.0.9 - 'Multiple' Arbitrary File Deletion Authenticated Exploit Author: faisalfs10x https://github.com/faisalfs10x Vendor Homepage: https://xos-shop.com Software Link: https://github.com/XOS-Shop/xosshopsystem/releases/tag/v1.0.9 Version: 1.0.9 Tested on: Windows 10, XAMP...
XOS Shop 1.0.9 - 'Multiple' Arbitrary File Deletion (Authenticated)
Exploit Title: XOS Shop 1.0.9 - 'Multiple' Arbitrary File Deletion Authenticated Date: 2021-07-25 Exploit Author: faisalfs10x https://github.com/faisalfs10x Vendor Homepage: https://xos-shop.com Software Link: https://github.com/XOS-Shop/xosshopsystem/releases/tag/v1.0.9 Version: 1.0.9 Tested on:...
APT-WEBSHOP-SYSTEM modules.php SQL Injection Vulnerability
No description provided by source. =============================================== APT-WEBSHOP-SYSTEM modules.php SQL injection =============================================== / // // // \ / // / / // \ / | / |/ / \ \ / / / / / , // / / / / / / , // | / / //// ///||// //////||// ||//|/ //...
APT-WEBSHOP-SYSTEM modules.php SQL injection
Exploit for php platform in category web applications ========================================================== APT-WEBSHOP-SYSTEM modules.php SQL Injection Vulnerability ========================================================== / // // // \ / // / / // \ / | / |/ / \ \ / / / / / , // / / / / /...
APT-WEBSHOP-SYSTEM - modules.php SQL Injection
APT-WEBSHOP-SYSTEM - modules.php SQL Injection =============================================== APT-WEBSHOP-SYSTEM modules.php SQL injection =============================================== / // // // \ / // / / // \ / | / |/ / \ \ / / / / / , // / / / / / / , // | / / //// ///||// //////||// ||//|...
APT-WEBSHOP-SYSTEM - 'modules.php' SQL Injection
=============================================== APT-WEBSHOP-SYSTEM modules.php SQL injection =============================================== / // // // \ / // / / // \ / | / |/ / \ \ / / / / / , // / / / / / / , // | / / //// ///||// //////||// ||//|/ // APT-WEBSHOP-SYSTEM modules.php SQL...
Code injection
Unspecified vulnerability in modules.php in APT-webshop-system 4.0 PRO, 3.0 BASIC, and 3.0 LIGHT allows remote attackers to access unspecified files via a modified warp parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in APT-webshop-system 4.0 PRO, 3.0 BASIC, and 3.0 LIGHT allows remote attackers to inject arbitrary web script or HTML via the message parameter, probably involving the basket functionality...
Sql injection
Multiple SQL injection vulnerabilities in modules.php in APT-webshop-system 4.0 PRO, 3.0 BASIC, and 3.0 LIGHT allow remote attackers to execute arbitrary SQL commands via the 1 group, 2 seite, and 3 id parameter, possibly involving the artikel functionality. NOTE: this vulnerability also allows...
CVE-2006-1687
Cross-site scripting XSS vulnerability in APT-webshop-system 4.0 PRO, 3.0 BASIC, and 3.0 LIGHT allows remote attackers to inject arbitrary web script or HTML via the message parameter, probably involving the basket functionality...
CVE-2006-1685
Multiple SQL injection vulnerabilities in modules.php in APT-webshop-system 4.0 PRO, 3.0 BASIC, and 3.0 LIGHT allow remote attackers to execute arbitrary SQL commands via the 1 group, 2 seite, and 3 id parameter, possibly involving the artikel functionality. NOTE: this vulnerability also allows...
CVE-2006-1686
Unspecified vulnerability in modules.php in APT-webshop-system 4.0 PRO, 3.0 BASIC, and 3.0 LIGHT allows remote attackers to access unspecified files via a modified warp parameter...
CVE-2006-1686
CVE-2006-1686 affects APT-webshop-system modules.php in version 4.0 PRO and 3.0 BASIC/3.0 LIGHT. The vulnerability allows remote attackers to access unspecified files by modifying a warp parameter. The description does not specify the root cause, exact file paths, or the impact beyond file access...
CVE-2006-1687
CVE-2006-1687 affects APT-webshop-system 4.0 PRO, 3.0 BASIC, and 3.0 LIGHT. The vulnerability is a Cross-site Scripting (XSS) that allows remote attackers to inject arbitrary web script or HTML via the message parameter, likely involving the basket functionality. The NVD entry lists a MEDIUM seve...
CVE-2006-1685
The CVE-2006-1685 entry concerns the APT-webshop-system (versions 4.0 PRO, 3.0 BASIC, 3.0 LIGHT) where the vulnerability is in modules.php. The underlying issue is SQL injection via the parameters (1) group, (2) seite, and (3) id, potentially involving the artikel functionality. This allows remot...
CVE-2006-1685
Multiple SQL injection vulnerabilities in modules.php in APT-webshop-system 4.0 PRO, 3.0 BASIC, and 3.0 LIGHT allow remote attackers to execute arbitrary SQL commands via the 1 group, 2 seite, and 3 id parameter, possibly involving the artikel functionality. NOTE: this vulnerability also allows...
CVE-2006-1687
Cross-site scripting XSS vulnerability in APT-webshop-system 4.0 PRO, 3.0 BASIC, and 3.0 LIGHT allows remote attackers to inject arbitrary web script or HTML via the message parameter, probably involving the basket functionality...
CVE-2006-1686
Unspecified vulnerability in modules.php in APT-webshop-system 4.0 PRO, 3.0 BASIC, and 3.0 LIGHT allows remote attackers to access unspecified files via a modified warp parameter...