Comersus Open Technologies Schwachstellen

Zeitverlauf

Typ

Produkt

Comersus Open Technologies Comersus Backoffice Lit ...6
Comersus Open Technologies Comersus Cart6

Massnahmen

Official Fix2
Temporary Fix0
Workaround0
Unavailable2
Not Defined8

Ausnutzbarkeit

High2
Functional0
Proof-of-Concept6
Unproven0
Not Defined4

Zugriffsart

Not Defined0
Physical0
Local0
Adjacent0
Network12

Authentisierung

Not Defined0
High0
Low0
None12

Benutzeraktivität

Not Defined0
Required8
None4

C3BM Index

CVSSv3 Base

≤10
≤20
≤30
≤40
≤58
≤60
≤70
≤84
≤90
≤100

CVSSv3 Temp

≤10
≤20
≤30
≤42
≤56
≤60
≤70
≤84
≤90
≤100

VulDB

≤10
≤20
≤30
≤40
≤58
≤60
≤70
≤84
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

CNA

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Hersteller

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploit 0-day

<1k0
<2k8
<5k4
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploit heute

<1k12
<2k0
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploitmarktvolumen

🔴 CTI Aktivitäten

Affected Products (3): Comersus BackOffice Plus (1), Comersus Backoffice Lite (4), Comersus Cart (6)

VeröffentlichtBaseTempSchwachstelleProdAusMasCTIEPSSCVE
20.06.20074.34.2Comersus Open Technologies Comersus Cart comersus_customerauthenticateform.asp Cross Site ScriptingUnbekanntHighUnavailable0.020.00457CVE-2007-3324
20.06.20077.37.1Comersus Open Technologies Comersus Cart comersus_optreviewreadexec.asp SQL InjectionUnbekanntHighUnavailable0.060.00308CVE-2007-3323
01.11.20054.34.1Comersus Open Technologies Comersus Backoffice Lite comersus_backoffice_supporterror.asp Cross Site ScriptingUnbekanntProof-of-ConceptNot Defined0.000.00102CVE-2005-3397
16.10.20054.34.3Comersus Open Technologies Comersus BackOffice Plus comersus_backoffice_searchitemform.asp Cross Site ScriptingUnbekanntNot DefinedNot Defined0.020.00230CVE-2005-3285
11.07.20054.34.1Comersus Open Technologies Comersus Cart Shopping Cart Cross Site ScriptingUnbekanntProof-of-ConceptNot Defined0.000.00285CVE-2005-2191
11.07.20057.37.3Comersus Open Technologies Comersus Cart Shopping Cart comersus_optaffiliateregistrationexec.asp SQL InjectionUnbekanntNot DefinedNot Defined0.030.00156CVE-2005-2190
02.05.20054.34.1Comersus Open Technologies Comersus Cart Cross Site ScriptingUnbekanntNot DefinedOfficial Fix0.000.00284CVE-2005-1010
02.05.20054.34.3Comersus Open Technologies Comersus Backoffice Lite comersus_supporterror.asp Cross Site ScriptingUnbekanntNot DefinedNot Defined0.000.00257CVE-2005-0303
02.05.20057.37.3Comersus Open Technologies Comersus Backoffice Lite default.asp SQL InjectionUnbekanntNot DefinedNot Defined0.020.00177CVE-2005-0302
02.05.20057.37.3Comersus Open Technologies Comersus Backoffice Lite comersus_backoffice_install10.asp Remote Code ExecutionUnbekanntNot DefinedNot Defined0.000.00718CVE-2005-0301

1 weitere Einträge werden nicht mehr angezeigt

Interested in the pricing of exploits?

See the underground prices here!