nick gudov vulnerabilities and exploits

(subscribe to this query)

Multiple SQL injection vulnerabilities in ProductCart 2.7 allow remote malicious users to execute arbitrary SQL commands via (1) the Category or resultCnt parameters to advSearch_h.asp, and possibly (2) the offset parameter to tarinasworld_butterflyjournal.asp. NOTE: it is possib...

Early Impact Productcart 2.7

2 EDB exploits

SQL injection vulnerability in (1) mailorder.asp or (2) payonline.asp in CactuShop 5.x allows remote malicious users to execute arbitrary SQL commands via the strItems parameter.

Cactusoft Cactushop 5.0 Cactusoft Cactushop 5.1

1 EDB exploit

Cross-site scripting (XSS) vulnerability in popuplargeimage.asp in CactuShop 5.x allows remote malicious users to inject arbitrary web script or HTML via the strImageTag parameter.

Cactusoft Cactushop 5.0 Cactusoft Cactushop 5.1

1 EDB exploit

EarlyImpact ProductCart uses a weak encryption scheme to encrypt passwords, which allows remote malicious users to obtain the password via a chosen plaintext attack.

Netsourcecommerce Productcart

1 EDB exploit

Cross-site scripting (XSS) vulnerability in error.asp in WebCortex WebStores 2000 6.0 allows remote malicious users to execute arbitrary script as other users and steal session IDs via the Message_id parameter.

Webcortex Webstores 2000 6.0

1 EDB exploit

SQL injection vulnerability in viewCart.asp in SpiderSales shopping cart software allows remote malicious users to execute arbitrary SQL via the userId parameter.

Spidersales Spidersales 2.0

1 EDB exploit

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook