Cubecart: >> Cubecart >> 6.5.3 Security Vulnerabilities
Directory Traversal vulnerability in CubeCart v.6.5.5 and before allows an attacker to execute arbitrary code via a crafted file uploaded to the _g and node parameters.
CVSS Score
9.8
EPSS Score
0.061
Published
2024-06-06
File Upload vulnerability in CubeCart before 6.5.5 allows an authenticated user to execute arbitrary code via a crafted .phar file.
CVSS Score
8.0
EPSS Score
0.001
Published
2024-04-29