CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2018-5190

PicturesPro Photo Cart 6 and 7 before Security-Patch-2018-B allows remote attackers to access arbitrary customer accounts via a modified cookie, related to pc_head.php, pc_login.php, and pc_login_page.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.4%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 5.0

References

https://brianmccarthytech.blogspot.co.nz/2018/04/cve-2018-5190.html
https://www.picturespro.com/support-forum/photo-cart/?t=38346-security-patch-for-photo-cart-2018
https://brianmccarthytech.blogspot.co.nz/2018/04/cve-2018-5190.html
https://www.picturespro.com/support-forum/photo-cart/?t=38346-security-patch-for-photo-cart-2018

Products affected by CVE-2018-5190

Picturespro » Picturespro » Version: 7.1.0

cpe:2.3:a:picturespro:picturespro:7.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-5190

Products

Pricing

Contact Us