Cubecart 6.4.0 Beta 1

CPE Details

Cubecart 6.4.0 Beta 1
cubecart
cubecart
6.4.0
2021-06-15
12h28 +00:00
2021-06-15
19h24 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:cubecart:cubecart:6.4.0:beta1:*:*:*:*:*:*

Informations

Vendor

cubecart

Product

cubecart

Version

6.4.0

Update

beta1

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2024-34832 2024-06-06 14h45 +00:00 Directory Traversal vulnerability in CubeCart v.6.5.5 and before allows an attacker to execute arbitrary code via a crafted file uploaded to the _g and node parameters.
9.8
Critique
CVE-2023-47675 2023-11-17 04h37 +00:00 CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to execute an arbitrary OS command.
7.2
Haute
CVE-2023-47283 2023-11-17 04h37 +00:00 Directory traversal vulnerability in CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to obtain files in the system.
4.9
Moyen
CVE-2023-42428 2023-11-17 04h37 +00:00 Directory traversal vulnerability in CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to delete directories and files in the system.
6.5
Moyen
CVE-2023-38130 2023-11-17 04h37 +00:00 Cross-site request forgery (CSRF) vulnerability in CubeCart prior to 6.5.3 allows a remote unauthenticated attacker to delete data in the system.
8.1
Haute