Vulnerabilities > Open Solution

DATE	CVE	VULNERABILITY TITLE	RISK
2007-06-08	CVE-2007-3139	Remote Security vulnerability in Quick.Cart config/general.php in Quick.Cart 2.2 and earlier uses a default username and password, which allows remote attackers to access the application via a login action to admin.php. network open-solution	6.8
2007-06-08	CVE-2007-3138	Local File Include vulnerability in Quick.Cart Directory traversal vulnerability in index.php in Open Solution Quick.Cart 2.2 and earlier allows remote attackers to include and execute arbitrary local files via a .. network low complexity open-solution	7.5
2007-03-10	CVE-2007-1407	Remote Security vulnerability in Quick.Cart Unspecified vulnerability in OpenSolution Quick.Cart before 2.1 has unknown impact and attack vectors, related to a "low critical exploit." This vulnerability has been addressed through an updated version of the product: http://opensolution.org/download/ network low complexity open-solution	7.5
2006-12-08	CVE-2006-6391	Directory Traversal vulnerability in Open Solution Quick.Cart 2.0 Multiple directory traversal vulnerabilities in Open Solution Quick.Cart 2.0, when register_globals is enabled and magic_quotes_gpc is disabled, allow remote attackers to include arbitrary files via a .. network open-solution	6.8
2006-12-08	CVE-2006-6390	Local File Include vulnerability in Open Solution Quick.Cart 2.0 Multiple directory traversal vulnerabilities in Open Solution Quick.Cart 2.0, when register_globals is enabled and magic_quotes_gpc is disabled, allow remote attackers to include and execute arbitrary local files via a .. network open-solution	6.8
2005-05-14	CVE-2005-1587	Cross-Site Scripting vulnerability in Open Solution Quick.Cart 0.3.0 Cross-site scripting (XSS) vulnerability in index.php for Quick.cart 0.3.0 allows remote attackers to inject arbitrary web script or HTML via the sWord parameter. network open-solution	4.3
2005-05-14	CVE-2005-1586	Information Disclosure vulnerability in Open Solution Quick.Forum 2.1.6 Quick.Forum 2.1.6 stores potentially sensitive information such as usernames, banned IP addresses, censored words, and backups under the web document root, which allows remote attackers to obtain that information via a direct request to (1) db/users.txt, (2) db/banList.txt, (3) db/censureWords.txt, or (4) backup files. network low complexity open-solution	5.0
2005-05-14	CVE-2005-1584	HTML Injection vulnerability in Open Solution Quick.Forum 2.1.6 Cross-site scripting (XSS) vulnerability in index.php for Quick.Forum 2.1.6 allows remote attackers to inject arbitrary web script or HTML via the topic field in a NewTopic action. network open-solution	4.3
2005-05-11	CVE-2005-1585	SQL-Injection vulnerability in Open Solution Quick.Forum 2.1.6 Multiple SQL injection vulnerabilities in Quick.Forum 2.1.6 allow remote attackers to execute arbitrary SQL commands via the (1) iCategory or (2) page parameter to index.php, or (3) iCategory parameter in the query string to the forum directory. network low complexity open-solution	7.5

Vulnerabilities > Open Solution {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Open Solution"}]}

Vulnerabilities > Open Solution