121 matches found
CVE-2007-4109
SQL injection vulnerability in signin.aspx in WebStore Online Store Application Template allows remote attackers to execute arbitrary SQL commands via the Password parameter...
Sql injection
SQL injection vulnerability in signin.aspx in WebStore Online Store Application Template allows remote attackers to execute arbitrary SQL commands via the Password parameter...
CVE-2007-4109
SQL injection vulnerability in signin.aspx in WebStore Online Store Application Template allows remote attackers to execute arbitrary SQL commands via the Password parameter...
CVE-2007-4109
The CVE-2007-4109 entry describes an SQL injection in sign_in.aspx of WebStore (Online Store Application Template), where an attacker can manipulate the Password parameter to execute arbitrary SQL. The connected NVD entry confirms a remote, unauthenticated SQL injection with network attack vector...
webstore-sql.txt
A R I A - S E C U R I T Y WebStore - Online Store Application Template SQL INJECTION Vendor: http://www.codewidgets.com http://target.com/PATH/signin.aspx Username: admin Password: anything' OR 'x'='x Credits: Aria-Security Team http://aria-security.net http://outlaw.aria-security.info...
WebStore - Online Store Application Template SQL INJECTION
A R I A - S E C U R I T Y WebStore - Online Store Application Template SQL INJECTION Vendor: http://www.codewidgets.com http://target.com/PATH/signin.aspx Username: admin Password: anything' OR 'x'='x Credits: Aria-Security Team http://aria-security.net http://outlaw.aria-security.info...
[EXPL] eXtropia WebStore Remote Command Execution (web_store.cgi)
The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...
CVE-2005-1403
CVE-2005-1403 affects JustWilliam’s Amazon Webstore 04050100. It contains multiple cross-site scripting (XSS) flaws allowing remote injection of arbitrary script/HTML via (1) image parameter to closeup.php, (2) currentIsExpanded or (3) searchFor parameters to index.php, (4) currentNumber paramete...
CVE-2005-1403
Multiple cross-site scripting XSS vulnerabilities in JustWilliam's Amazon Webstore 04050100 allow remote attackers to inject arbitrary web script or HTML via the 1 image parameter to closeup.php, the 2 currentIsExpanded or 3 searchFor parameters to index.php, 4 the currentNumber parameter to...
CVE-2005-1403
Multiple cross-site scripting XSS vulnerabilities in JustWilliam's Amazon Webstore 04050100 allow remote attackers to inject arbitrary web script or HTML via the 1 image parameter to closeup.php, the 2 currentIsExpanded or 3 searchFor parameters to index.php, 4 the currentNumber parameter to...
Just Williams Amazon Webstore - CurrentIsExpanded Cross-Site Scripting
Just Williams Amazon Webstore - CurrentIsExpanded Cross-Site Scripting source: https://www.securityfocus.com/bid/13425/info Amazon Webstore is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may...
Just Williams Amazon Webstore - Closeup.php?Image Cross-Site Scripting
Just Williams Amazon Webstore - Closeup.php?Image Cross-Site Scripting source: https://www.securityfocus.com/bid/13419/info Amazon Webstore is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may...
Just Williams Amazon Webstore - searchFor Cross-Site Scripting
Just Williams Amazon Webstore - searchFor Cross-Site Scripting source: https://www.securityfocus.com/bid/13426/info Amazon Webstore is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverag...
Just Williams Amazon Webstore - CurrentNumber Cross-Site Scripting
Just Williams Amazon Webstore - CurrentNumber Cross-Site Scripting source: https://www.securityfocus.com/bid/13427/info Amazon Webstore is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may...
Just Williams Amazon Webstore - HTTP Response Splitting
Just Williams Amazon Webstore - HTTP Response Splitting source: https://www.securityfocus.com/bid/13428/info Amazon Webstore is prone to a HTTP response splitting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. A remote attacker may explo...
Just William's Amazon Webstore - 'searchFor' Cross-Site Scripting
source: https://www.securityfocus.com/bid/13426/info Amazon Webstore is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...
Just William's Amazon Webstore - 'CurrentIsExpanded' Cross-Site Scripting
source: https://www.securityfocus.com/bid/13425/info Amazon Webstore is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...
Just William's Amazon Webstore - 'CurrentNumber' Cross-Site Scripting
source: https://www.securityfocus.com/bid/13427/info Amazon Webstore is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...
Just William's Amazon Webstore - HTTP Response Splitting
source: https://www.securityfocus.com/bid/13428/info Amazon Webstore is prone to a HTTP response splitting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. A remote attacker may exploit this vulnerability to influence or misrepresent how W...
Just William's Amazon Webstore - 'Closeup.php?Image' Cross-Site Scripting
source: https://www.securityfocus.com/bid/13419/info Amazon Webstore is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary script code executed in the...