CVE-2008-6757
published 2009-04-28CVE-2008-6757: Cross-site scripting (XSS) vulnerability in manuals_search.php in ViArt Shop (aka Shopping Cart) 3.5 allows remote attackers to inject arbitrary web script or…
PriorityP419medium4.3CVSS 2.0
AVNACMAuNCNIPAN
EXPLOIT
EPSS
1.51%
71.2th percentile
Cross-site scripting (XSS) vulnerability in manuals_search.php in ViArt Shop (aka Shopping Cart) 3.5 allows remote attackers to inject arbitrary web script or HTML via the manuals_search parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| viart | viart_shop | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
ViArt Shop 3.5 - 'manuals_search.php?manuals_search' Cross-Site Scripting
exploitdb·2008-12-29
CVE-2008-6757 ViArt Shop 3.5 - 'manuals_search.php?manuals_search' Cross-Site Scripting
ViArt Shop 3.5 - 'manuals_search.php?manuals_search' Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/33043/info
ViArt Shop is prone to multiple remote vulnerabilities:
- Multiple cross-site scripting vulnerabilities
- An information-disclosure vulnerability
- An authentication-bypass vulnerability
An attacker can exploit these issues to execute arbitrary script code, steal cookie-based authentication credentials, obtain sensitive information, or gain unauthorized access to the affected application.
ViArt Shop 3.5 is vulnerable; other versions may also be affected.
http://www.example.com/manuals_search.php?manuals_search=window.location="http://www.example2.com";
Exploit-DB
Microsoft Windows XP/2003 - 'afd.sys' Local Privilege Escalation (K-plugin) (MS08-066)
exploitdb·2008-10-15
CVE-2008-3464 Microsoft Windows XP/2003 - 'afd.sys' Local Privilege Escalation (K-plugin) (MS08-066)
Microsoft Windows XP/2003 - 'afd.sys' Local Privilege Escalation (K-plugin) (MS08-066)
---
Hi,
I have just uploaded a k-plugin for Kartoffel, which exploits a flaw
patched in the recent MS08-066 bulletin.
http://kartoffel.reversemode.com/downloads.php
backup: https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/6757.zip (2008-afd_plugin.zip)
For those researchers interesting in digging a little bit more into this
flaw, just take a look at afd!AfdGetRemoteAddress and/or check this out
http://blogs.technet.com/swi/archive/2008/10/14/ms08-066-how-to-correctly-validate-and-capture-user-mode-data.aspx
Regards,
Rubén.
# milw0rm.com [2008-10-15]
No writeups or analysis indexed.
http://secunia.com/advisories/33340http://www.osvdb.org/53284http://www.securityfocus.com/archive/1/499625/100/0/threadedhttp://www.securityfocus.com/bid/33043http://www.securitytracker.com/id?1021497http://secunia.com/advisories/33340http://www.osvdb.org/53284http://www.securityfocus.com/archive/1/499625/100/0/threadedhttp://www.securityfocus.com/bid/33043http://www.securitytracker.com/id?1021497
2009-04-28
Published