Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote cart remote cart vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2006-0087
SQL injection vulnerability in (1) pages.php and (2) detail.php in Lizard Cart CMS 1.04 allows remote malicious users to execute arbitrary SQL commands via the id parameter.
Lizard Cart Lizard Cart Cms 1.0.4
1 EDB exploit
4.3
CVSSv2
CVE-2005-4314
Cross-site scripting (XSS) vulnerability in ppcal.cgi in PPCal Shopping Cart 3.3.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the (1) stop and (2) user parameters.
Ppcal Shopping Cart Ppcal Shopping Cart
1 EDB exploit
6.8
CVSSv2
CVE-2007-5098
Multiple PHP remote file inclusion vulnerabilities in DFD Cart 1.1.4 and previous versions, when register_globals is enabled, allow remote malicious users to execute arbitrary PHP code via a URL in the set_depth parameter to (1) app.lib/product.control/core.php/product.control.co...
Dragonfrugal Dfd Cart
1 EDB exploit
7.5
CVSSv2
CVE-2007-0092
SQL injection vulnerability in productdetail.asp in E-SMARTCART 1.0 allows remote malicious users to execute arbitrary SQL commands via the product_id parameter.
E-smart Cart E-smart Cart 1.0
1 EDB exploit
6.8
CVSSv2
CVE-2007-3447
SQL injection vulnerability in BugMall Shopping Cart 2.5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the "basic search box." NOTE: 4.0.2 and other versions might also be affected.
Bugmall Shopping Cart
Bugmall Shopping Cart 2.5
1 EDB exploit
7.5
CVSSv2
CVE-2007-4762
Multiple SQL injection vulnerabilities in embadmin/login.asp in E-SMARTCART 1.0 allow remote malicious users to execute arbitrary SQL commands via the (1) user and (2) pass fields, different vectors than CVE-2007-0092.
E-smart Cart E-smart Cart 1.0
1 EDB exploit
7.5
CVSSv2
CVE-2021-34165
A SQL Injection vulnerability in Sourcecodester Basic Shopping Cart 1.0 allows a remote malicious user to Bypass Authentication and become Admin.
Basic Shopping Cart Project Basic Shopping Cart 1.0
7.5
CVSSv2
CVE-2007-4907
Multiple PHP remote file inclusion vulnerabilities in X-Cart allow remote malicious users to execute arbitrary PHP code via a URL in the xcart_dir parameter to (1) config.php, (2) prepare.php, (3) smarty.php, (4) customer/product.php, (5) provider/auth.php, and (6) admin/auth.php...
Qualiteam X-cart 3.5.0
1 EDB exploit
7.5
CVSSv2
CVE-2021-32172
Maian Cart v3.8 contains a preauthorization remote code execution (RCE) exploit via a broken access control issue in the Elfinder plugin.
Maianscriptworld Maian Cart 3.8
4.3
CVSSv2
CVE-2012-5225
Cross-site scripting (XSS) vulnerability in webscr.php in xClick Cart 1.0.1 and 1.0.2 allows remote malicious users to inject arbitrary web script or HTML via the shopping_url parameter.
Eliteweaver Xclick Cart 1.0.1
Eliteweaver Xclick Cart 1.0.2
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »