Shodan
Vulnerabilities
Vulnerable Software
Cubecart:  >> Cubecart  >> 4.2.1  Security Vulnerabilities
CVE-2014-2341
Session fixation vulnerability in CubeCart before 5.2.9 allows remote attackers to hijack web sessions via the PHPSESSID parameter.
CVSS Score
6.8
EPSS Score
0.073
Published
2014-04-22
CVE-2009-4060
SQL injection vulnerability in includes/content/viewProd.inc.php in CubeCart before 4.3.7 remote attackers to execute arbitrary SQL commands via the productId parameter.
CVSS Score
7.5
EPSS Score
0.002
Published
2009-11-24
CVE-2008-1550
Multiple cross-site scripting (XSS) vulnerabilities in index.php in CubeCart 4.2.1 allow remote attackers to inject arbitrary web script or HTML via (1) the _a parameter in a searchStr action and the (2) Submit parameter.
CVSS Score
4.3
EPSS Score
0.003
Published
2008-03-31


Products
Pricing
Contact Us

Shodan ® - All rights reserved