Lucene search
HistoryFeb 24, 2013 - 11:48 a.m.
CVE-2013-0118
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
59.8%
CS-Cart before 3.0.6, when PayPal Standard Payments is configured, allows remote attackers to set the payment recipient via a modified value of the merchant’s e-mail address, as demonstrated by setting the recipient to one’s self.
Affected configurations
Node
cs-cartcs-cartRange≤3.0.5
ORcs-cartcs-cartMatch3.0
ORcs-cartcs-cartMatch3.0.2
ORcs-cartcs-cartMatch3.0.3
ORcs-cartcs-cartMatch3.0.4
Related
cve
cve
CVE-2013-0118
2022-10-03 16:15:03
cert
cert
CS-Cart v3.0.4 configured with PayPal Standard Payments design vulnerability
2013-02-22 00:00:00
cvelist
cvelist
CVE-2013-0118
2022-10-03 16:15:03
prion
prion
Code injection
2013-02-24 11:48:00
nessus
nessus
Mac OS X Multiple Vulnerabilities (Security Update 2015-004) (FREAK)
2015-04-10 00:00:00
Mac OS X 10.10.x < 10.10.3 Multiple Vulnerabilities (FREAK)
2015-04-10 00:00:00
securityvulns
securityvulns
Apple Mac OS X multiple security vulnerabilities
2015-04-13 00:00:00
APPLE-SA-2015-04-08-2 OS X 10.10.3 and Security Update 2015-004
2015-04-09 00:00:00
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
0.002 Low
EPSS
Percentile
59.8%
Related for NVD:CVE-2013-0118