Vulnerabilities (CVE)

Filtered by vendor Web Inhabit Subscribe
Filtered by product A\+ Store E-commerce
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2006-5960 1 Web Inhabit 1 A\+ Store E-commerce 2024-11-21 6.8 MEDIUM N/A
Multiple cross-site scripting (XSS) vulnerabilities in account_login.asp in A+ Store E-Commerce allow remote attackers to inject arbitrary web script or HTML via the (1) username (txtUserName) and (2) password (txtPassword) parameters. NOTE: portions of these details are obtained from third party information.
CVE-2006-5959 1 Web Inhabit 1 A\+ Store E-commerce 2024-11-21 7.5 HIGH N/A
SQL injection vulnerability in browse.asp in A+ Store E-Commerce allows remote attackers to execute arbitrary SQL commands via the ParentID parameter.