Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cs-cart cs-cart 1.3.5 vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2008-6394
SQL injection vulnerability in core/user.php in CS-Cart 1.3.5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the cs_cookies[customer_user_id] cookie parameter.
Cs-cart Cs-cart 1.3.2
Cs-cart Cs-cart 1.3.3
Cs-cart Cs-cart 1.2
Cs-cart Cs-cart 1.1
Cs-cart Cs-cart 1.3.0
Cs-cart Cs-cart
1 EDB exploit
655
VMScore
CVE-2009-2579
SQL injection vulnerability in reward_points.post.php in the Reward points addon in CS-Cart prior to 2.0.6 allows remote authenticated users to execute arbitrary SQL commands via the sort_order parameter in a reward_points.userlog action to index.php, a different vulnerability th...
Cs-cart Cs-cart 1.3.2
Cs-cart Cs-cart 2.0
Cs-cart Cs-cart 1.2
Cs-cart Cs-cart 1.1
Cs-cart Cs-cart 2.0.4
Cs-cart Cs-cart 1.3.5
Cs-cart Cs-cart 1.3.0
Cs-cart Cs-cart 1.3.3
Cs-cart Cs-cart
Cs-cart Cs-cart 1.3.5sp3
Cs-cart Cs-cart 1.3.5sp2
1 EDB exploit
435
VMScore
CVE-2008-1458
Cross-site scripting (XSS) vulnerability in index.php in CS-Cart 1.3.2 allows remote malicious users to inject arbitrary web script or HTML via the q parameter in a products search action. NOTE: it was also reported that 1.3.5-SP2 trial edition is also affected.
Cs-cart Cs-cart 1.3.2
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started