Payprocart Security Vulnerabilities and Issues — Payprocart CVE List

Lucene search

ProfitcodePayprocart

3 matches found

CVE•added 2005/05/02 4:0 a.m.•42 views

CVE-2005-1003

Directory traversal vulnerability in index.php for ProfitCode PayProCart 3.0 allows remote attackers to include arbitrary PHP files via .. (dot dot) sequences in the modID parameter.

7.5CVSS7.3AI score0.00235EPSS

CVE•added 2005/05/02 4:0 a.m.•38 views

CVE-2005-1004

Cross-site scripting (XSS) vulnerability in usrdetails.php in ProfitCode PayProCart 3.0 allows remote attackers to inject arbitrary web script or HTML via the sgnuptype parameter.

4.3CVSS5.7AI score0.01993EPSS

CVE•added 2005/05/02 4:0 a.m.•29 views

CVE-2005-1005

ProfitCode PayProCart 3.0 allows remote attackers to bypass authentication and gain administrative privileges to the admin control panel, as demonstrated via a direct request to adminshop/index.php with hex-encoded .. sequences in the ftoedit parameter.

7.5CVSS7.5AI score0.03138EPSS