Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cubecart cubecart 4.3.4 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2010-1931
SQL injection vulnerability in includes/content/cart.inc.php in CubeCart PHP Shopping cart 4.3.4 up to and including 4.3.9 allows remote malicious users to execute arbitrary SQL commands via the shipKey parameter to index.php.
Cubecart Cubecart 4.3.4
Cubecart Cubecart 4.3.5
Cubecart Cubecart 4.3.6
Cubecart Cubecart 4.3.9
Cubecart Cubecart 4.3.7
Cubecart Cubecart 4.3.8
1 EDB exploit
7.5
CVSSv2
CVE-2009-3904
classes/session/cc_admin_session.php in CubeCart 4.3.4 does not properly restrict administrative access permissions, which allows remote malicious users to bypass restrictions and gain administrative access via a HTTP request that contains an empty (1) sessID (ccAdmin cookie), (2...
Cubecart Cubecart 4.3.4
1 EDB exploit
7.5
CVSSv2
CVE-2009-4060
SQL injection vulnerability in includes/content/viewProd.inc.php in CubeCart prior to 4.3.7 remote malicious users to execute arbitrary SQL commands via the productId parameter.
Cubecart Cubecart 3.0.5
Cubecart Cubecart 3.0.6
Cubecart Cubecart 3.0.13
Cubecart Cubecart 3.0.14
Cubecart Cubecart 4.0.0
Cubecart Cubecart 4.1.1
Cubecart Cubecart 4.2.1
Cubecart Cubecart 4.3.5
Cubecart Cubecart
Cubecart Cubecart 3.0.7
Cubecart Cubecart 3.0.8
Cubecart Cubecart 3.0.15
Cubecart Cubecart 3.0.16
Cubecart Cubecart 4.0.1
Cubecart Cubecart 4.0.2
Cubecart Cubecart 4.2.2
Cubecart Cubecart 4.2.3
Cubecart Cubecart 4.3.4
Cubecart Cubecart 3.0.20
Cubecart Cubecart 3.0.0
Cubecart Cubecart 3.0.4
Cubecart Cubecart 3.0.11
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started