Multiple XSS Vulnerabilities in AShop Deluxe and Administration Panel by AShop
CVE-2007-0056

Currently unrated

Key Information:

Vendor

Ashopsoftware

Status
Ashop Administration Panel
Ashop Deluxe
Vendor
CVE Published:
4 January 2007

What is CVE-2007-0056?

AShop Deluxe 4.5 and AShop Administration Panel are vulnerable to multiple cross-site scripting (XSS) vulnerabilities. Attackers can exploit these vulnerabilities by injecting arbitrary web scripts or HTML into specific parameters within the affected PHP files, such as ashop/catalogue.php and ashop/basket.php. This exposure enables remote attackers to execute malicious scripts in the context of the user’s session, potentially leading to data theft, session hijacking, or other malicious activities.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://secunia.com/advisories/23547
third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/archive/1/455629/100/0/threaded
mailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/bid/21845
vdb-entryx_refsource_BID

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.