Vulnerabilities > CVE-2007-3446 - Unspecified vulnerability in Bugmall Shopping Cart
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN bugmall
exploit available
Summary
BugMall Shopping Cart 2.5 and earlier has a default username "demo" and password "demo," which allows remote attackers to obtain login access.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | BugMall Shopping Cart 2.5 (SQL/XSS) Multiple Remote Vulnerabilities. CVE-2007-3446,CVE-2007-3447,CVE-2007-3448. Webapps exploit for php platform |
| file | exploits/php/webapps/4103.txt |
| id | EDB-ID:4103 |
| last seen | 2016-01-31 |
| modified | 2007-06-25 |
| platform | php |
| port | |
| published | 2007-06-25 |
| reporter | t0pP8uZz |
| source | https://www.exploit-db.com/download/4103/ |
| title | bugmall shopping cart 2.5 sql/XSS Multiple Vulnerabilities |
| type | webapps |
References
- http://osvdb.org/40152
- http://osvdb.org/40152
- http://www.h4cky0u.org/viewtopic.php?t=26834
- http://www.h4cky0u.org/viewtopic.php?t=26834
- http://www.securityfocus.com/bid/24627
- http://www.securityfocus.com/bid/24627
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35040
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35040
- https://www.exploit-db.com/exploits/4103
- https://www.exploit-db.com/exploits/4103