Shodan
Vulnerabilities
Vulnerable Software
Dragonfrugal:  >> Dfd Cart  >> 1.1.4  Security Vulnerabilities
CVE-2010-1541
Multiple cross-site scripting (XSS) vulnerabilities in DFD Cart 1.198, 1.197, and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) category and (2) list_quantity parameters to index.php, and the (3) category parameter to your.order.php.
CVSS Score
4.3
EPSS Score
0.003
Published
2010-04-26
CVE-2010-1542
Multiple cross-site request forgery (CSRF) vulnerabilities in admin/configure.php in DFD Cart 1.198, 1.197, and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) conduct cross-site scripting (XSS) attacks or (2) change unspecified settings.
CVSS Score
6.8
EPSS Score
0.001
Published
2010-04-26


Products
Pricing
Contact Us

Shodan ® - All rights reserved