Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shipstation shipstation vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2020-9009
The ShipStation.com plugin 1.1 and previous versions for CS-Cart allows remote malicious users to insert arbitrary information into the database (via action=shipnotify) because access to this endpoint is completely unchecked. The attacker must guess an order number.
Shipstation Shipstation
NA
CVE-2020-8889
The ShipStation.com plugin 1.0 for CS-Cart allows remote malicious users to obtain sensitive information (via action=export) because a typo results in a successful comparison of a blank password and NULL.
Shipstation Shipstation 1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started