Vendor Dictionary: AMEMBER.com

AMEMBER.com

Short Name:	[None Entered]
Previous Names:	[None Entered]
URL:	[None Entered]
Email:	[None Entered]
Security URL:	[None Entered]
Security Email:	[None Entered]
Knowledge Base:	[None Entered]
Notes:	[No Notes]

Vulnerabilities by Vendor Product

AMEMBER.com

AMEMBER.com

aMember Pro: 2.3.4; OSVDB ID: 19457 aMember Pro mysql.inc.php Remote File Inclusion; OSVDB ID: 19439 aMember Pro efsnet.inc.php Remote File Inclusion; OSVDB ID: 19440 aMember Pro theinternetcommerce.inc.php Remote File Inclusion; OSVDB ID: 19441 aMember Pro cdg.inc.php Remote File Inclusion; OSVDB ID: 19442 aMember Pro compuworld.inc.php Remote File Inclusion; OSVDB ID: 19443 aMember Pro directone.inc.php Remote File Inclusion; OSVDB ID: 19444 aMember Pro authorize_aim.inc.php Remote File Inclusion; OSVDB ID: 19445 aMember Pro beanstream.inc.php Remote File Inclusion; OSVDB ID: 19448 aMember Pro /echo/config.inc.php Remote File Inclusion; OSVDB ID: 19446 aMember Pro eprocessingnetwork.inc.php Remote File Inclusion; OSVDB ID: 19447 aMember Pro eway.inc.php Remote File Inclusion; OSVDB ID: 19449 aMember Pro linkpoint.inc.php Remote File Inclusion; OSVDB ID: 19450 aMember Pro logiccommerce.inc.php Remote File Inclusion; OSVDB ID: 19451 aMember Pro netbilling.inc.php Remote File Inclusion; OSVDB ID: 19452 aMember Pro payflow_pro.inc.php Remote File Inclusion; OSVDB ID: 19453 aMember Pro paymentsgateway.inc.php Remote File Inclusion; OSVDB ID: 19454 aMember Pro payos.inc.php Remote File Inclusion; OSVDB ID: 19455 aMember Pro payready.inc.php Remote File Inclusion; OSVDB ID: 19456 aMember Pro plugnplay.inc.php Remote File Inclusion

aMember: 3.1.7; OSVDB ID: 54756 aMember /admin/setup.php notebook Parameter XSS; OSVDB ID: 54757 aMember /admin/aff.php action Parameter XSS; OSVDB ID: 54758 aMember /admin/email_templates.php tpl Parameter XSS; OSVDB ID: 54759 aMember /admin/aff_banners.php banner_id Parameter XSS; OSVDB ID: 54760 aMember /admin/coupons.php action Parameter XSS; OSVDB ID: 54761 aMember /admin/protect.php action Parameter XSS; OSVDB ID: 54748 aMember /admin/access_log.php order1 Parameter SQL Injection; OSVDB ID: 54764 aMember /admin/newsletter_threats.php thread_id Parameter XSS; OSVDB ID: 54763 aMember /admin/newsletter_guests.php guest_id Parameter XSS; OSVDB ID: 54762 aMember /admin/products.php action Parameter XSS; OSVDB ID: 54744 aMember /docs/changelog.txt Version Disclosure; OSVDB ID: 54751 aMember /admin/users.php Multiple Parameter XSS; OSVDB ID: 54755 aMember signup.php Multiple Field XSS; OSVDB ID: 54754 aMember aff_signup.php Multiple Parameter XSS; OSVDB ID: 54753 aMember profile.php Multiple Parameter XSS; OSVDB ID: 54752 aMember /admin/index.php Menu User-lookup XSS; Unknown or Unspecified; OSVDB ID: 21012 aMember sendpass.php lamember_login Parameter XSS; OSVDB ID: 21013 aMember member.php login Parameter XSS

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.