RSS   Vulnerabilities for 'Maian cart'   RSS

2021-10-07
 
CVE-2021-32172

CWE-862
 

 
Maian Cart v3.8 contains a preauthorization remote code execution (RCE) exploit via a broken access control issue in the Elfinder plugin.

 
2008-05-14
 
CVE-2008-2212

CWE-79
 

 
Multiple cross-site scripting (XSS) vulnerabilities in Maian Cart 1.1 allow remote attackers to inject arbitrary web script or HTML via the (1) msg_adminheader, (2) msg_adminheader2, (3) msg_adminheader3, (4) msg_adminheader4, and unspecified other parameters to admin/inc/header.php; the (5) msg_script3 and unspecified other parameters to admin/inc/footer.php; and the (6) keywords parameter to index.php in a search action.

 
2008-02-28
 
CVE-2008-1075

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in index.php in Maian Cart 1.1 allows remote attackers to inject arbitrary web script or HTML via the keywords parameter in a search command. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

 

 >>> Vendor: Maianscriptworld 13 Products
Maian weblog
Maian recipe
Maian cart
Maian uploader
Maian search
Maian music
Maian gallery
Maian greeting
Maian support
Maian guestbook
Maian links
Maian greetings
Maianaffiliate


Copyright 2024, cxsecurity.com

 

Back to Top