Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cubecart cubecart 4.3.4 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2010-1931
SQL injection vulnerability in includes/content/cart.inc.php in CubeCart PHP Shopping cart 4.3.4 up to and including 4.3.9 allows remote malicious users to execute arbitrary SQL commands via the shipKey parameter to index.php.
Cubecart Cubecart 4.3.4
Cubecart Cubecart 4.3.5
Cubecart Cubecart 4.3.6
Cubecart Cubecart 4.3.9
Cubecart Cubecart 4.3.7
Cubecart Cubecart 4.3.8
1 EDB exploit
7.5
CVSSv2
CVE-2009-4060
SQL injection vulnerability in includes/content/viewProd.inc.php in CubeCart prior to 4.3.7 remote malicious users to execute arbitrary SQL commands via the productId parameter.
Cubecart Cubecart 3.0.5
Cubecart Cubecart 3.0.6
Cubecart Cubecart 3.0.13
Cubecart Cubecart 3.0.14
Cubecart Cubecart 4.0.0
Cubecart Cubecart 4.1.1
Cubecart Cubecart 4.2.1
Cubecart Cubecart 4.3.5
Cubecart Cubecart
Cubecart Cubecart 3.0.7
Cubecart Cubecart 3.0.8
Cubecart Cubecart 3.0.15
Cubecart Cubecart 3.0.16
Cubecart Cubecart 4.0.1
Cubecart Cubecart 4.0.2
Cubecart Cubecart 4.2.2
Cubecart Cubecart 4.2.3
Cubecart Cubecart 4.3.4
Cubecart Cubecart 3.0.20
Cubecart Cubecart 3.0.0
Cubecart Cubecart 3.0.4
Cubecart Cubecart 3.0.11
1 EDB exploit
7.5
CVSSv2
CVE-2009-3904
classes/session/cc_admin_session.php in CubeCart 4.3.4 does not properly restrict administrative access permissions, which allows remote malicious users to bypass restrictions and gain administrative access via a HTTP request that contains an empty (1) sessID (ccAdmin cookie), (2...
Cubecart Cubecart 4.3.4
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started