Vulnerabilities for Makebid auction deluxe (...) - CXSECURITY.COM

Vulnerabilities for 'Makebid auction deluxe'

2005-07-13

CVE-2005-2259

The dispallclosed2 function in dispallclosed.pl for multiple USANet Creations products, including (1) USANet Shopping Mall Software, (2) Domain Name Auction Software, (3) Standard Classified Ads Software, and (4) MakeBid Reverse Auction allows remote attackers to execute arbitrary code via shell metacharacters in the DISPCLOSED parameter.

2002-05-29

CVE-2002-0257

Cross-site scripting vulnerability in auction.pl of MakeBid Auction Deluxe 3.30 allows remote attackers to obtain information from other users via the form fields (1) TITLE, (2) DESCTIT, (3) DESC, (4) searchstring, (5) ALIAS, (6) EMAIL, (7) ADDRESS1, (8) ADDRESS2, (9) ADDRESS3, (10) PHONE1, (11) PHONE2, (12) PHONE3, or (13) PHONE4.

>>> Vendor: Usanet creations 6 Products

Makebid auction deluxe

Domain name auction

Makebid auction standard

Makebid reverse auction

Standard classified ads

Usanet shopping mall

Copyright 2024, cxsecurity.com