CPE-DD354D7A-EF6C-49F6-BBFB-A22FD6C9E6B7 Détail

CPE Details

Cubecart 4.3.7

Vendor

cubecart

Product

cubecart

Version

4.3.7

Created

2010-06-10
18h48 +00:00

Modifié

2012-07-03
16h35 +00:00

Liens officiels

CPE NVD

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Gestion des notifications

Liste des Notifications

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Paramètres

Vous pouvez spécifier un titre qui sera récupéré dans les alertes qui seront envoyées.

CPE ID

Planifications

Mois

Prochaine exécution calculée

Jour

Jour de la semaine

Heure

Minute

Date de création

Dernière exécution

Prochaine exécution

Fonctionnalité nécessitant une connexion

Cette fonctionnalité qui vous permet de recevoir des alertes, n'est active que lorsque vous êtes connecté à votre compte.

CPE Name: cpe:2.3:a:cubecart:cubecart:4.3.7:::::::*

Informations

Vendor

cubecart

Product

cubecart

Version

4.3.7

Related CVE

Open and find in CVE List

CVE ID	Publié	Description	Score	Gravité
CVE-2024-34832	2024-06-06 14h45 +00:00	Directory Traversal vulnerability in CubeCart v.6.5.5 and before allows an attacker to execute arbitrary code via a crafted file uploaded to the _g and node parameters.	9.8	Critique
CVE-2023-47675	2023-11-17 04h37 +00:00	CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to execute an arbitrary OS command.	7.2	Haute
CVE-2023-47283	2023-11-17 04h37 +00:00	Directory traversal vulnerability in CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to obtain files in the system.	4.9	Moyen
CVE-2023-42428	2023-11-17 04h37 +00:00	Directory traversal vulnerability in CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to delete directories and files in the system.	6.5	Moyen
CVE-2023-38130	2023-11-17 04h37 +00:00	Cross-site request forgery (CSRF) vulnerability in CubeCart prior to 6.5.3 allows a remote unauthenticated attacker to delete data in the system.	8.1	Haute
CVE-2018-20716	2019-01-15 15h00 +00:00	CubeCart before 6.1.13 has SQL Injection via the validate[] parameter of the "I forgot my Password!" feature.	9.8	Critique
CVE-2017-2090	2017-04-28 14h00 +00:00	Directory traversal vulnerability in CubeCart versions prior to 6.1.4 allows remote authenticated attackers to read arbitrary files via unspecified vectors.	6.5	Moyen
CVE-2017-2098	2017-04-28 14h00 +00:00	Directory traversal vulnerability in CubeCart versions prior to 6.1.4 allows remote authenticated attackers to read arbitrary files via unspecified vectors.	6.5	Moyen
CVE-2017-2117	2017-04-28 14h00 +00:00	Directory traversal vulnerability in CubeCart versions prior to 6.1.5 allows attacker with administrator rights to read arbitrary files via unspecified vectors.	4.9	Moyen
CVE-2014-2341	2014-04-21 12h00 +00:00	Session fixation vulnerability in CubeCart before 5.2.9 allows remote attackers to hijack web sessions via the PHPSESSID parameter.	6.8
CVE-2010-1931	2010-06-09 22h00 +00:00	SQL injection vulnerability in includes/content/cart.inc.php in CubeCart PHP Shopping cart 4.3.4 through 4.3.9 allows remote attackers to execute arbitrary SQL commands via the shipKey parameter to index.php.	7.5

Cubecart 4.3.7

CPE Details

CPE Name: cpe:2.3:a:cubecart:cubecart:4.3.7:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:cubecart:cubecart:4.3.7:::::::*