Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vpasp vp-asp shopping cart vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2010-1590
Cross-site scripting (XSS) vulnerability in shopsessionsubs.asp in Rocksalt International VP-ASP Shopping Cart 6.50 and previous versions might allow remote malicious users to inject arbitrary web script or HTML via the client's DNS hostname (aka the REMOTE_HOST variable), r...
Vpasp Vp-asp Shopping Cart
Vpasp Vp-asp Shopping Cart 5.50
Vpasp Vp-asp Shopping Cart 6.00
668
VMScore
CVE-2010-1588
SQL injection vulnerability in the Getwebsess function in shopsessionsubs.asp in Rocksalt International VP-ASP Shopping Cart 6.50 and previous versions allows remote malicious users to execute arbitrary SQL commands via the websess parameter.
Vpasp Vp-asp Shopping Cart
Vpasp Vp-asp Shopping Cart 6.00
Vpasp Vp-asp Shopping Cart 5.50
445
VMScore
CVE-2010-1589
Directory traversal vulnerability in shopsessionsubs.asp in Rocksalt International VP-ASP Shopping Cart 6.50 and previous versions might allow remote malicious users to determine the existence of arbitrary files via directory traversal sequences in the client's DNS hostname ...
Vpasp Vp-asp Shopping Cart
Vpasp Vp-asp Shopping Cart 6.00
Vpasp Vp-asp Shopping Cart 5.50
505
VMScore
CVE-2008-5929
VP-ASP Shopping Cart 6.50 stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download the database containing the password via a direct request for database/shopping650.mdb. NOTE: some of these details are obta...
Vpasp Vp-asp Shopping Cart 6.50
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started