Vulnerabilities > Comersus Open Technologies

DATE	CVE	VULNERABILITY TITLE	RISK
2005-05-02	CVE-2005-0301	Security Bypass vulnerability in Comersus Open Technologies Comersus Backoffice Lite 6.0/6.1 comersus_backoffice_install10.asp in BackOffice Lite 6.0 and 6.01 allows remote attackers to bypass authentication and gain privileges via a direct request to the program. network low complexity comersus-open-technologies	7.5
2004-09-01	CVE-2004-1656	Unspecified vulnerability in Comersus Open Technologies Comersus Cart 5.0.991 CRLF injection vulnerability in Comersus Shopping Cart 5.0991 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the redirecturl parameter. network low complexity comersus-open-technologies	5.0
2004-08-06	CVE-2004-0682	Multiple vulnerability in Comersus Open Technologies Comersus Cart 5.0.9 comersus_gatewayPayPal.asp in Comersus Cart 5.09, and possibly other versions before 5.098, allows remote attackers to change the prices of items by directly modifying them in the URL. network low complexity comersus-open-technologies	7.5
2004-08-06	CVE-2004-0681	Multiple vulnerability in Comersus Open Technologies Comersus Cart 5.09 Multiple cross-site scripting (XSS) vulnerabilities in (1) comersus_customerAuthenticateForm.asp, (2) comersus_backoffice_message.asp, (3) comersus_supportError.asp, or (4) comersus_message.asp in Comersus Cart 5.09 allow remote attackers to execute web script as other users via the message parameter. network comersus-open-technologies	6.8

Vulnerabilities > Comersus Open Technologies {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Comersus Open Technologies"}]}

Vulnerabilities > Comersus Open Technologies