CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-16123

In Kartatopia PilusCart 1.4.1, the parameter filename in the file catalog.php is mishandled, leading to ../ Local File Disclosure.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.367

EPSS Ranking 96.9%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

Products affected by CVE-2019-16123

Kartatopia » Piluscart » Version: 1.4.0

cpe:2.3:a:kartatopia:piluscart:1.4.0
Kartatopia » Piluscart » Version: 1.4.1

cpe:2.3:a:kartatopia:piluscart:1.4.1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved