Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ubercart ubercart 5.x-1.7 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2009-4772
Unspecified vulnerability in the PayPal Website Payments Standard functionality in the Ubercart module 5.x prior to 5.x-1.9 and 6.x prior to 6.x-2.1 for Drupal, when a custom checkout completion message is enabled, allows malicious users to obtain sensitive information via unknow...
Ubercart Ubercart 5.x-1.5
Ubercart Ubercart 5.x-1.4
Ubercart Ubercart 5.x-1.0
Ubercart Ubercart 6.x-2.0
Ubercart Ubercart 5.x-1.8
Ubercart Ubercart 5.x-1.2
Ubercart Ubercart 5.x-1.1
Ubercart Ubercart 5.x-1.7
Ubercart Ubercart 5.x-1.6
Ubercart Ubercart 5.x-1.3
5
CVSSv2
CVE-2009-4771
The PayPal Website Payments Standard functionality in the Ubercart module 5.x prior to 5.x-1.9 and 6.x prior to 6.x-2.1 for Drupal does not properly validate orders, which allows remote malicious users to trigger unspecified "duplicate actions" via unknown vectors.
Ubercart Ubercart 5.x-1.8
Ubercart Ubercart 5.x-1.2
Ubercart Ubercart 5.x-1.1
Ubercart Ubercart 5.x-1.0
Ubercart Ubercart 6.x-2.0
Ubercart Ubercart 5.x-1.7
Ubercart Ubercart 5.x-1.6
Ubercart Ubercart 5.x-1.3
Ubercart Ubercart 5.x-1.5
Ubercart Ubercart 5.x-1.4
6.8
CVSSv2
CVE-2009-4773
Cross-site request forgery (CSRF) vulnerability in the order-management functionality in the Ubercart module 5.x prior to 5.x-1.9 and 6.x prior to 6.x-2.1 for Drupal allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Ubercart Ubercart 5.x-1.2
Ubercart Ubercart 5.x-1.1
Ubercart Ubercart 5.x-1.0
Ubercart Ubercart 6.x-2.0
Ubercart Ubercart 5.x-1.5
Ubercart Ubercart 5.x-1.4
Ubercart Ubercart 5.x-1.3
Ubercart Ubercart 5.x-1.8
Ubercart Ubercart 5.x-1.7
Ubercart Ubercart 5.x-1.6
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started