CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Cubecart: >> Cubecart >> 4.0.3 Security Vulnerabilities

CVE-2014-2341

Session fixation vulnerability in CubeCart before 5.2.9 allows remote attackers to hijack web sessions via the PHPSESSID parameter.

CVSS Score

6.8

EPSS Score

0.073

Published

2014-04-22

CVE-2009-4060

SQL injection vulnerability in includes/content/viewProd.inc.php in CubeCart before 4.3.7 remote attackers to execute arbitrary SQL commands via the productId parameter.

CVSS Score

7.5

EPSS Score

0.002

Published

2009-11-24

Page 2

Vulnerabilities

Vulnerable Software

Cubecart: >> Cubecart >> 4.0.3 Security Vulnerabilities

Products

Pricing

Contact Us