Vp-asp Shopping Cart@5.50 Security Vulnerabilities and Issues — Vp-asp Shopping Cart@5.50 CVE List

Lucene search

VpaspVp-asp Shopping Cart5.50

3 matches found

CVE•added 2010/04/28 11:30 p.m.•41 views

CVE-2010-1588

SQL injection vulnerability in the Getwebsess function in shopsessionsubs.asp in Rocksalt International VP-ASP Shopping Cart 6.50 and earlier allows remote attackers to execute arbitrary SQL commands via the websess parameter.

7.5CVSS8.7AI score0.00372EPSS

CVE•added 2010/04/28 11:30 p.m.•32 views

CVE-2010-1589

Directory traversal vulnerability in shopsessionsubs.asp in Rocksalt International VP-ASP Shopping Cart 6.50 and earlier might allow remote attackers to determine the existence of arbitrary files via directory traversal sequences in the client's DNS hostname (aka the REMOTE_HOST variable), related ...

5CVSS7AI score0.00175EPSS

CVE•added 2010/04/28 11:30 p.m.•27 views

CVE-2010-1590

Cross-site scripting (XSS) vulnerability in shopsessionsubs.asp in Rocksalt International VP-ASP Shopping Cart 6.50 and earlier might allow remote attackers to inject arbitrary web script or HTML via the client's DNS hostname (aka the REMOTE_HOST variable), related to the CookielessGenerateFilename...

4.3CVSS5.9AI score0.00225EPSS