Lucene search

Olivecartpro Security Vulnerabilities

cve

CVE-2016-4903

Cross-site scripting vulnerability in WP-OliveCart versions prior to 3.1.3 and WP-OliveCartPro versions prior to 3.1.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

6.1CVSS

6.4AI Score

0.001EPSS

2017-05-22 04:29 PM

cve

CVE-2016-4904

Cross-site request forgery (CSRF) vulnerability in WP-OliveCart versions prior to 3.1.3 and WP-OliveCartPro versions prior to 3.1.8 allows remote attackers to hijack the authentication of a user to perform unintended operations via unspecified vectors.

8.8CVSS

9.1AI Score

0.002EPSS

2017-05-22 04:29 PM

cve

CVE-2016-4905

SQL injection vulnerability in the WP-OliveCart versions prior to 3.1.3 and WP-OliveCartPro versions prior to 3.1.8 allows attackers with administrator rights to execute arbitrary SQL commands via unspecified vectors.

9.8CVSS

9.7AI Score

0.002EPSS

2017-05-22 04:29 PM