Anfälligkeitssuche        Suche in 191973 CVE Beschreibungen
und 86218 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

CVE Kennung:CVE-2005-3152
Beschreibung:Multiple cross-site scripting (XSS) vulnerabilities in CubeCart 3.0.3 allow remote attackers to inject arbitrary web script or HTML via the redir parameter to (1) cart.php or (2) index.php, or (3) the searchStr parameter in a viewCat action to index.php. Note: vectors (1) and (2) were later reported to affect 3.0.7-pl1.
Test Kennungen: 1.3.6.1.4.1.25623.1.0.56751   1.3.6.1.4.1.25623.1.0.19945  
Querverweise: Common Vulnerability Exposure (CVE) ID: CVE-2005-3152
BugTraq ID: 14962
http://www.securityfocus.com/bid/14962
http://bugs.cubecart.com/?do=details&id=459
http://lostmon.blogspot.com/2005/09/cubecart-303-multiple-variable-cross.html
http://lostmon.blogspot.com/2006/01/cubecart-307-pl1-indexphp-multiple.html
http://securitytracker.com/id?1014984
http://securityreason.com/securityalert/35
XForce ISS Database: cubecart-index-script-xss(24177)
https://exchange.xforce.ibmcloud.com/vulnerabilities/24177




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.