Cubecart 6.2.7

CPE Details

Cubecart 6.2.7
cubecart
cubecart
6.2.7
2021-06-15
12h28 +00:00
2021-06-15
19h24 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:cubecart:cubecart:6.2.7:*:*:*:*:*:*:*

Informations

Vendor

cubecart

Product

cubecart

Version

6.2.7

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2024-34832 2024-06-06 14h45 +00:00 Directory Traversal vulnerability in CubeCart v.6.5.5 and before allows an attacker to execute arbitrary code via a crafted file uploaded to the _g and node parameters.
9.8
Critical
CVE-2023-47675 2023-11-17 04h37 +00:00 CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to execute an arbitrary OS command.
7.2
High
CVE-2023-47283 2023-11-17 04h37 +00:00 Directory traversal vulnerability in CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to obtain files in the system.
4.9
Medium
CVE-2023-42428 2023-11-17 04h37 +00:00 Directory traversal vulnerability in CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to delete directories and files in the system.
6.5
Medium
CVE-2023-38130 2023-11-17 04h37 +00:00 Cross-site request forgery (CSRF) vulnerability in CubeCart prior to 6.5.3 allows a remote unauthenticated attacker to delete data in the system.
8.1
High