Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:53 p.m.4 views

CVE-2020-9009

The ShipStation.com plugin 1.1 and earlier for CS-Cart allows remote attackers to insert arbitrary information into the database via action=shipnotify because access to this endpoint is completely unchecked. The attacker must guess an order number...

3.7CVSS6.9AI score0.00633EPSS
Exploits1References1
Circl
Circl
added 2023/04/12 12:23 a.m.4 views

CVE-2020-9009

creationtimestamp| type| source ---|---|--- 2023-04-12 00:23:32+00:00| seen| https://t.me/cibsecurity/61920 2025-02-14 10:03:11+00:00| seen| Telegram/nyLzwblHCO932T9p6FCg6Rsxk8pYReEKjVH7Lmsnc3t-ms...

3.7CVSS5.8AI score0.00633EPSS
Exploits1References1
NVD
NVD
added 2023/04/11 9:15 p.m.9 views

CVE-2020-9009

The ShipStation.com plugin 1.1 and earlier for CS-Cart allows remote attackers to insert arbitrary information into the database via action=shipnotify because access to this endpoint is completely unchecked. The attacker must guess an order number...

3.7CVSS4.3AI score0.00633EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/04/11 12:0 a.m.5 views

CVE-2020-9009

The ShipStation.com plugin 1.1 and earlier for CS-Cart allows remote attackers to insert arbitrary information into the database via action=shipnotify because access to this endpoint is completely unchecked. The attacker must guess an order number...

4.3AI score0.00633EPSS
Exploits1References2
CVE
CVE
added 2023/04/11 12:0 a.m.42 views

CVE-2020-9009

The CVE-2020-9009 issue affects the ShipStation.com plugin for CS-Cart, version 1.1 and earlier. Affected component: the unchecked web endpoint at action=shipnotify, which allows remote attackers to insert arbitrary data into the database. Root cause: access to the endpoint is completely unchecke...

3.7CVSS4.4AI score0.00633EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder