Lucene search
HistoryFeb 24, 2013 - 11:48 a.m.
CVE-2013-0118
cs-cart
vulnerability
cve-2013-0118
paypal
remote attackers
payment recipient
6.7 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
59.5%
CS-Cart before 3.0.6, when PayPal Standard Payments is configured, allows remote attackers to set the payment recipient via a modified value of the merchant’s e-mail address, as demonstrated by setting the recipient to one’s self.
Related
cvelist
cvelist
CVE-2013-0118
2022-10-03 16:15:03
cert
cert
CS-Cart v3.0.4 configured with PayPal Standard Payments design vulnerability
2013-02-22 00:00:00
prion
prion
Code injection
2013-02-24 11:48:00
nessus
nessus
Mac OS X Multiple Vulnerabilities (Security Update 2015-004) (FREAK)
2015-04-10 00:00:00
Mac OS X 10.10.x < 10.10.3 Multiple Vulnerabilities (FREAK)
2015-04-10 00:00:00
securityvulns
securityvulns
Apple Mac OS X multiple security vulnerabilities
2015-04-13 00:00:00
APPLE-SA-2015-04-08-2 OS X 10.10.3 and Security Update 2015-004
2015-04-09 00:00:00
6.7 Medium
AI Score
Confidence
High
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
59.5%
Related for CVE-2013-0118