CPE-605CD293-19FA-4A92-BE05-D95621C86D49 Détail

CPE Details

Cubecart 6.0.2

Vendor

cubecart

Product

cubecart

Version

6.0.2

Created

2015-09-29
13h12 +00:00

Modifié

2015-11-10
18h38 +00:00

Liens officiels

CPE NVD

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Gestion des notifications

Liste des Notifications

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Paramètres

Vous pouvez spécifier un titre qui sera récupéré dans les alertes qui seront envoyées.

CPE ID

Planifications

Mois

Prochaine exécution calculée

Jour

Jour de la semaine

Heure

Minute

Date de création

Dernière exécution

Prochaine exécution

Fonctionnalité nécessitant une connexion

Cette fonctionnalité qui vous permet de recevoir des alertes, n'est active que lorsque vous êtes connecté à votre compte.

CPE Name: cpe:2.3:a:cubecart:cubecart:6.0.2:::::::*

Informations

Vendor

cubecart

Product

cubecart

Version

6.0.2

Related CVE

Open and find in CVE List

CVE ID	Publié	Description	Score	Gravité
CVE-2024-34832	2024-06-06 14h45 +00:00	Directory Traversal vulnerability in CubeCart v.6.5.5 and before allows an attacker to execute arbitrary code via a crafted file uploaded to the _g and node parameters.	9.8	Critique
CVE-2023-47675	2023-11-17 04h37 +00:00	CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to execute an arbitrary OS command.	7.2	Haute
CVE-2023-47283	2023-11-17 04h37 +00:00	Directory traversal vulnerability in CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to obtain files in the system.	4.9	Moyen
CVE-2023-42428	2023-11-17 04h37 +00:00	Directory traversal vulnerability in CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to delete directories and files in the system.	6.5	Moyen
CVE-2023-38130	2023-11-17 04h37 +00:00	Cross-site request forgery (CSRF) vulnerability in CubeCart prior to 6.5.3 allows a remote unauthenticated attacker to delete data in the system.	8.1	Haute
CVE-2018-20716	2019-01-15 15h00 +00:00	CubeCart before 6.1.13 has SQL Injection via the validate[] parameter of the "I forgot my Password!" feature.	9.8	Critique
CVE-2017-2090	2017-04-28 14h00 +00:00	Directory traversal vulnerability in CubeCart versions prior to 6.1.4 allows remote authenticated attackers to read arbitrary files via unspecified vectors.	6.5	Moyen
CVE-2017-2098	2017-04-28 14h00 +00:00	Directory traversal vulnerability in CubeCart versions prior to 6.1.4 allows remote authenticated attackers to read arbitrary files via unspecified vectors.	6.5	Moyen
CVE-2017-2117	2017-04-28 14h00 +00:00	Directory traversal vulnerability in CubeCart versions prior to 6.1.5 allows attacker with administrator rights to read arbitrary files via unspecified vectors.	4.9	Moyen
CVE-2015-6928	2015-09-28 13h00 +00:00	classes/admin.class.php in CubeCart 5.2.12 through 5.2.16 and 6.x before 6.0.7 does not properly validate that a password reset request was made, which allows remote attackers to change the administrator password via a recovery request with a space character in the validate parameter and the administrator email in the email parameter.	6.8

Cubecart 6.0.2

CPE Details

CPE Name: cpe:2.3:a:cubecart:cubecart:6.0.2:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:cubecart:cubecart:6.0.2:::::::*