Shodan
Vulnerabilities
Vulnerable Software
Oneworldstore:  >> Oneworldstore  Security Vulnerabilities
CVE-2005-1161
Multiple SQL injection vulnerabilities in OneWorldStore allow remote attackers to execute arbitrary SQL commands via the idProduct parameter to (1) owAddItem.asp or (2) owProductDetail.asp, (3) idCategory parameter to owListProduct.asp, or (4) bSpecials parameter to owListProduct.asp.
CVSS Score
7.5
EPSS Score
0.038
Published
2005-05-02
CVE-2005-1162
Multiple cross-site scripting (XSS) vulnerabilities in OneWorldStore allow remote attackers to inject arbitrary web script or HTML via the (1) sEmail parameter to owContactUs.asp, (2) bSub parameter to owListProduct.asp, or the (3) Name, (4) Email, or (5) Comment fields in owProductDetail.asp.
CVSS Score
5.8
EPSS Score
0.058
Published
2005-05-02
CVE-2005-1328
OneWorldStore allows remote attackers to cause a denial of service (application crash) via a direct request to owConnections/chksettings.asp.
CVSS Score
5.0
EPSS Score
0.016
Published
2005-05-02
CVE-2005-1329
owOfflineCC.asp in OneWorldStore allows remote attackers to obtain sensitive information by modifying the idOrder parameter.
CVSS Score
5.0
EPSS Score
0.179
Published
2005-05-02


Products
Pricing
Contact Us

Shodan ® - All rights reserved