Usanet Creations Makebid Auction Deluxe vulnerabilities
2 known vulnerabilities affecting usanet_creations/makebid_auction_deluxe.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2005-2259CRITICALCVSS 10.0v3.302005-07-13
CVE-2005-2259 [CRITICAL] CVE-2005-2259: The dispallclosed2 function in dispallclosed.pl for multiple USANet Creations products, including (1
The dispallclosed2 function in dispallclosed.pl for multiple USANet Creations products, including (1) USANet Shopping Mall Software, (2) Domain Name Auction Software, (3) Standard Classified Ads Software, and (4) MakeBid Reverse Auction allows remote attackers to execute arbitrary code via shell metacharacters in the DISPCLOSED parameter.
nvd
CVE-2002-0257HIGHCVSS 7.5v3.302002-05-29
CVE-2002-0257 [HIGH] CVE-2002-0257: Cross-site scripting vulnerability in auction.pl of MakeBid Auction Deluxe 3.30 allows remote attack
Cross-site scripting vulnerability in auction.pl of MakeBid Auction Deluxe 3.30 allows remote attackers to obtain information from other users via the form fields (1) TITLE, (2) DESCTIT, (3) DESC, (4) searchstring, (5) ALIAS, (6) EMAIL, (7) ADDRESS1, (8) ADDRESS2, (9) ADDRESS3, (10) PHONE1, (11) PHONE2, (12) PHONE3, or (13) PHONE4.
nvd