Profitcode Payprocart vulnerabilities
3 known vulnerabilities affecting profitcode/payprocart.
Total CVEs
3
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2005-1005P3HIGHCVSS 7.5PoCv3.02005-05-02
CVE-2005-1005 [HIGH] CVE-2005-1005: ProfitCode PayProCart 3.0 allows remote attackers to bypass authentication and gain administrative p
ProfitCode PayProCart 3.0 allows remote attackers to bypass authentication and gain administrative privileges to the admin control panel, as demonstrated via a direct request to adminshop/index.php with hex-encoded .. sequences in the ftoedit parameter.
nvd
CVE-2005-1004P4MEDIUMCVSS 4.3PoCv3.02005-05-02
CVE-2005-1004 [MEDIUM] CVE-2005-1004: Cross-site scripting (XSS) vulnerability in usrdetails.php in ProfitCode PayProCart 3.0 allows remot
Cross-site scripting (XSS) vulnerability in usrdetails.php in ProfitCode PayProCart 3.0 allows remote attackers to inject arbitrary web script or HTML via the sgnuptype parameter.
nvd
CVE-2005-1003P4HIGHCVSS 7.5v3.02005-05-02
CVE-2005-1003 [HIGH] CVE-2005-1003: Directory traversal vulnerability in index.php for ProfitCode PayProCart 3.0 allows remote attackers
Directory traversal vulnerability in index.php for ProfitCode PayProCart 3.0 allows remote attackers to include arbitrary PHP files via .. (dot dot) sequences in the modID parameter.
nvd