MidnightBSD

Advisories for comersus_open_technologies

CVE-2004-0681 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in (1) comersus_customerAuthenticateForm.asp, (2) comersus_backoffice_message.asp, (3) comersus_supportError.asp, or (4) comersus_message.asp in Comersus Cart 5.09 allow remote attackers to execute web script as other users via the message parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
comersus_open_technologies comersus_cart 5.09
CVE-2004-0682 HIGH

comersus_gatewayPayPal.asp in Comersus Cart 5.09, and possibly other versions before 5.098, allows remote attackers to change the prices of items by directly modifying them in the URL.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
comersus_open_technologies comersus_cart 5.0.9
CVE-2004-1656 MEDIUM

CRLF injection vulnerability in Comersus Shopping Cart 5.0991 allows remote attackers to perform HTTP Response Splitting attacks to modify expected HTML content from the server via the redirecturl parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
comersus_open_technologies comersus_cart 5.0.991
CVE-2005-0301 HIGH

comersus_backoffice_install10.asp in BackOffice Lite 6.0 and 6.01 allows remote attackers to bypass authentication and gain privileges via a direct request to the program.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
comersus_open_technologies comersus_backoffice_lite 6.0
comersus_open_technologies comersus_backoffice_lite 6.1
CVE-2005-0302 HIGH

SQL injection vulnerability in default.asp in BackOffice Lite 6.0 and 6.01 allows remote attackers to execute arbitrary SQL commands via the referer field in the HTTP header.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
comersus_open_technologies comersus_backoffice_lite 6.0
comersus_open_technologies comersus_backoffice_lite 6.1
CVE-2005-0303 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in (1) comersus_supportError.asp or (2) comersus_backofficelite_supportError.asp in BackOffice Lite 6.0 and 6.01 allow remote attackers to inject arbitrary web script or HTML via the error parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
comersus_open_technologies comersus_backoffice_lite 6.0
comersus_open_technologies comersus_backoffice_lite 6.1
CVE-2005-1010 MEDIUM

Cross-site scripting (XSS) vulnerability in Comersus Cart 6 allows remote attackers to inject arbitrary web script or HTML via the account username.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
comersus_open_technologies comersus_cart 6.0.3
CVE-2005-1188 MEDIUM

Cross-site scripting (XSS) vulnerability in comersus_searchItem.asp in Comersus 3.90 to 4.51 allows remote attackers to inject arbitrary web script or HTML via the curPage parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
comersus_open_technologies comersus_cart 4.20b
comersus_open_technologies comersus_cart 4.29
comersus_open_technologies comersus_cart 4.47
comersus_open_technologies comersus_cart 4.28
comersus_open_technologies comersus_cart 4.36
comersus_open_technologies comersus_cart 3.90
comersus_open_technologies comersus_cart 4.051
comersus_open_technologies comersus_cart 4.00
comersus_open_technologies comersus_cart 4.14
comersus_open_technologies comersus_cart 4.23
comersus_open_technologies comersus_cart 4.27
CVE-2005-2190 HIGH

Multiple SQL injection vulnerabilities in Comersus shopping cart allow remote attackers to execute arbitrary SQL commands via the (1) email parameter to comersus_optAffiliateRegistrationExec.asp or (2) idProduct parameter to comersus_optReviewReadExec.asp.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
comersus_open_technologies comersus_cart *
CVE-2005-2191 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in Comersus shopping cart allow remote attackers to inject arbitrary web script or HTML via the (1) name parameter to comersus_backoffice_listAssignedPricesToCustomer.asp or (2) message parameter to comersus_backoffice_message.asp.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
comersus_open_technologies comersus_cart *
CVE-2005-3285 MEDIUM

Cross-site scripting (XSS) vulnerability in comersus_backoffice_searchItemForm.asp in Comersus BackOffice Plus allows remote attackers to inject arbitrary web script or HTML via the (1) forwardTo1, (2) forwardTo2, (3) nameFT1, or (4) nameFT2 parameters.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
comersus_open_technologies comersus_backoffice_plus *
CVE-2005-3397 MEDIUM

Cross-site scripting (XSS) vulnerability in Comersus BackOffice allows remote attackers to inject arbitrary web script or HTML via the error parameter to comersus_backoffice_supportError.asp. NOTE: the comersus_backoffice_message.asp/message vector is already covered by CVE-2005-2191 item 2.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
comersus_open_technologies comersus_backoffice_lite 4.5
comersus_open_technologies comersus_backoffice_plus 5.0.9
comersus_open_technologies comersus_backoffice_plus 4.10
comersus_open_technologies comersus_backoffice_plus 4.11
comersus_open_technologies comersus_backoffice_lite 6.0.1
comersus_open_technologies comersus_backoffice_plus 4.30
comersus_open_technologies comersus_backoffice_plus 5.0
comersus_open_technologies comersus_backoffice_plus *
comersus_open_technologies comersus_backoffice_lite 5.0
comersus_open_technologies comersus_backoffice_lite 4.30
comersus_open_technologies comersus_backoffice_lite 6.0
comersus_open_technologies comersus_backoffice_lite 4.2
comersus_open_technologies comersus_backoffice_lite 4.11
comersus_open_technologies comersus_backoffice_plus 4.5
comersus_open_technologies comersus_backoffice_plus 4.2
comersus_open_technologies comersus_backoffice_lite 4.32
comersus_open_technologies comersus_backoffice_plus 6.0.1
comersus_open_technologies comersus_backoffice_lite *
comersus_open_technologies comersus_backoffice_lite 4.10
comersus_open_technologies comersus_backoffice_lite 5.0.9
comersus_open_technologies comersus_backoffice_plus 4.32
comersus_open_technologies comersus_backoffice_plus 6.0