23 matches found
EUVD-2021-24245
Malware in sbrugna...
EUVD-2021-33476
Malicious code in bioql PyPI...
CVE-2021-37764
Arbitrary File Deletion vulnerability in XOS-Shop xosshopsystem 1.0.9 via currentmanufacturerimage parameter to /shop/admin/manufacturers.php...
CVE-2021-46820
Arbitrary File Deletion vulnerability in XOS-Shop xosshopsystem 1.0.9 via currentmanufacturerimage parameter to /shop/admin/categories.php...
CVE-2021-46820
Arbitrary File Deletion vulnerability in XOS-Shop xosshopsystem 1.0.9 via currentmanufacturerimage parameter to /shop/admin/categories.php...
CVE-2021-46820
Arbitrary File Deletion vulnerability in XOS-Shop xosshopsystem 1.0.9 via currentmanufacturerimage parameter to /shop/admin/categories.php...
CVE-2021-37764
Arbitrary File Deletion vulnerability in XOS-Shop xosshopsystem 1.0.9 via currentmanufacturerimage parameter to /shop/admin/manufacturers.php...
CVE-2021-37764
Arbitrary File Deletion vulnerability in XOS-Shop xosshopsystem 1.0.9 via currentmanufacturerimage parameter to /shop/admin/manufacturers.php...
Arbitrary file deletion
Arbitrary File Deletion vulnerability in XOS-Shop xosshopsystem 1.0.9 via currentmanufacturerimage parameter to /shop/admin/manufacturers.php...
Arbitrary file deletion
Arbitrary File Deletion vulnerability in XOS-Shop xosshopsystem 1.0.9 via currentmanufacturerimage parameter to /shop/admin/categories.php...
CVE-2021-46820
Arbitrary File Deletion vulnerability in XOS-Shop xosshopsystem 1.0.9 via currentmanufacturerimage parameter to /shop/admin/categories.php...
CVE-2021-46820
CVE-2021-46820 affects the XOS-Shop system (xos_shop_system 1.0.9). The issue is an arbitrary file deletion vulnerability exploitable via the current_manufacturer_image parameter to /shop/admin/categories.php. The connected sources confirm the affected product and the vulnerable parameter but do ...
CVE-2021-37764
CVE-2021-37764 affects XOS-Shop xos_shop_system 1.0.9. The vulnerability is described as Arbitrary File Deletion via the current_manufacturer_image parameter to /shop/admin/manufacturers.php, implying an unauthenticated or low-privilege access path that can delete files. The NVD metrics indicate ...
CVE-2021-37764
Arbitrary File Deletion vulnerability in XOS-Shop xosshopsystem 1.0.9 via currentmanufacturerimage parameter to /shop/admin/manufacturers.php...
XOS-Shop xos_shop_system 安全漏洞
xosshopsystem is XOS-Shop open source a powerful e-commerce shopping cart and CMS software. A security vulnerability exists in XOS-Shop xosshopsystem 1.0.9, which originates from an arbitrary file deletion vulnerability found via the currentmanufacturerimage parameter of...
XOS-Shop xos_shop_system 安全漏洞
xosshopsystem is XOS-Shop open source a powerful e-commerce shopping cart and CMS software. A security vulnerability exists in XOS-Shop xosshopsystem 1.0.9, which originates from an arbitrary file deletion vulnerability found in the currentmanufacturerimage parameter of /shop/admin/categories.php...
XOS Shop 1.0.9 - (Multiple) Arbitrary File Deletion (Authenticated) Vulnerability
Exploit Title: XOS Shop 1.0.9 - 'Multiple' Arbitrary File Deletion Authenticated Exploit Author: faisalfs10x https://github.com/faisalfs10x Vendor Homepage: https://xos-shop.com Software Link: https://github.com/XOS-Shop/xosshopsystem/releases/tag/v1.0.9 Version: 1.0.9 Tested on: Windows 10, XAMP...
XOS Shop 1.0.9 Arbitrary File Deletion
Exploit Title: XOS Shop 1.0.9 - 'Multiple' Arbitrary File Deletion Authenticated Date: 2021-07-25 Exploit Author: faisalfs10x https://github.com/faisalfs10x Vendor Homepage: https://xos-shop.com Software Link: https://github.com/XOS-Shop/xosshopsystem/releases/tag/v1.0.9 Version: 1.0.9 Tested on:...
XOS Shop 1.0.9 - 'Multiple' Arbitrary File Deletion (Authenticated)
Exploit Title: XOS Shop 1.0.9 - 'Multiple' Arbitrary File Deletion Authenticated Date: 2021-07-25 Exploit Author: faisalfs10x https://github.com/faisalfs10x Vendor Homepage: https://xos-shop.com Software Link: https://github.com/XOS-Shop/xosshopsystem/releases/tag/v1.0.9 Version: 1.0.9 Tested on:...
XOS Shop - goto SQL Injection
XOS Shop - goto SQL Injection source: https://www.securityfocus.com/bid/65121/info XOS Shop is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the...