Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
qualiteam x-cart vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-0951
X-Cart prior to 5.1.11 allows remote authenticated users to read or delete address data of arbitrary accounts via a modified (1) update or (2) remove request.
Qualiteam X-cart
NA
CVE-2005-1823
Multiple cross-site scripting (XSS) vulnerabilities in Qualiteam X-Cart 4.0.8 allow remote malicious users to inject arbitrary web script or HTML via the (1) cat or (2) printable parameter to home.php, (3) productid or (4) mode parameter to product.php, (5) id parameter to error_...
Qualiteam X-cart 4.0.8
8 EDB exploits
NA
CVE-2007-4907
Multiple PHP remote file inclusion vulnerabilities in X-Cart allow remote malicious users to execute arbitrary PHP code via a URL in the xcart_dir parameter to (1) config.php, (2) prepare.php, (3) smarty.php, (4) customer/product.php, (5) provider/auth.php, and (6) admin/auth.php...
Qualiteam X-cart 3.5.0
1 EDB exploit
NA
CVE-2005-1822
Multiple SQL injection vulnerabilities in Qualiteam X-Cart 4.0.8 allow remote malicious users to execute arbitrary SQL commands via the (1) cat or (2) printable parameter to home.php, (3) productid or (4) mode parameter to product.php, (5) id parameter to error_message.php, (6) s...
Qualiteam X-cart 4.0.8
8 EDB exploits
NA
CVE-2012-2570
Cross-site scripting (XSS) vulnerability in products_map.php in X-Cart Gold 4.5 allows remote malicious users to inject arbitrary web script or HTML via the symb parameter.
Qualiteam X-cart 4.5
2 EDB exploits
NA
CVE-2009-3592
Cross-site scripting (XSS) vulnerability in customer/home.php in Qualiteam X-Cart allows remote malicious users to inject arbitrary web script or HTML via the email parameter in a subscribed action, a different vector than CVE-2005-1823.
Qtmsoft X-cart
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2