Shodan
Vulnerabilities
Vulnerable Software
Comersus Open Technologies:  >> Comersus Cart  >> 7.07  Security Vulnerabilities
CVE-2007-3323
SQL injection vulnerability in comersus_optReviewReadExec.asp in Comersus Shop Cart 7.07 allows remote attackers to execute arbitrary SQL commands via the idProduct parameter. NOTE: this might be the same as CVE-2005-2190.2.
CVSS Score
7.5
EPSS Score
0.005
Published
2007-06-21
CVE-2007-3324
Multiple cross-site scripting (XSS) vulnerabilities in Comersus Cart 7.07 allow remote attackers to inject arbitrary web script or HTML via the redirectUrl parameter to (1) comersus_customerAuthenticateForm.asp or (2) comersus_message.asp, different vectors than CVE-2004-0681.
CVSS Score
4.3
EPSS Score
0.092
Published
2007-06-21


Products
Pricing
Contact Us

Shodan ® - All rights reserved