Vulnerabilities > Profitcode
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-09-11 | CVE-2006-4672 | Code Injection vulnerability in Profitcode Ppalcart 2.5Ee PHP remote file inclusion vulnerability in profitCode ppalCart 2.5 EE, possibly a component of PayProCart, allows remote attackers to execute arbitrary PHP code via a URL in the (1) proMod parameter to (a) index.php, or the (2) docroot parameter to (b) index.php or (c) mainpage.php. | 7.5 |
2005-05-02 | CVE-2005-1005 | Unspecified vulnerability in Profitcode Payprocart 3.0 ProfitCode PayProCart 3.0 allows remote attackers to bypass authentication and gain administrative privileges to the admin control panel, as demonstrated via a direct request to adminshop/index.php with hex-encoded .. | 7.5 |
2005-05-02 | CVE-2005-1004 | Unspecified vulnerability in Profitcode Payprocart 3.0 Cross-site scripting (XSS) vulnerability in usrdetails.php in ProfitCode PayProCart 3.0 allows remote attackers to inject arbitrary web script or HTML via the sgnuptype parameter. network profitcode | 4.3 |
2005-05-02 | CVE-2005-1003 | Directory Traversal vulnerability in Profitcode Payprocart 3.0 Directory traversal vulnerability in index.php for ProfitCode PayProCart 3.0 allows remote attackers to include arbitrary PHP files via .. | 7.5 |