CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

OSV•added 2025/07/31 4:15 p.m.•5 views

CVE-2025-50847

Cross Site Request Forgery CSRF vulnerability in CS Cart 4.18.3, allows attackers to add products to a user's comparison list via a crafted HTTP request...

6.5CVSS5.8AI score0.00137EPSS

Exploits0References2

CNNVD•added 2025/07/25 12:0 a.m.•5 views

OpenCart 安全漏洞

OpenCart is an open source e-commerce system by the OpenCart team in China. The system provides modules for product reviews, product ratings, and product additions. A security vulnerability exists in OpenCart version 4.1.0.4, which stems from an unvalidated SVG file that could lead to stored...

6.1CVSS6AI score0.00246EPSS

Exploits1References2

RedhatCVE•added 2025/05/22 8:42 a.m.•6 views

CVE-2019-7220

X-Cart V5 is vulnerable to XSS via the CategoryFilter2 parameter...

6.1CVSS5.8AI score0.00838EPSS

Exploits1References1

Positive Technologies•added 2023/10/12 12:0 a.m.•10 views

PT-2023-28719 · Spa-Cart · Spa-Cart

Name of the Vulnerable Software and Affected Versions: SPA-Cart version 1.9.0.3 Description: The issue allows a remote attacker to add an admin user with role status due to Cross Site Request Forgery CSRF. Recommendations: For SPA-Cart version 1.9.0.3, at the moment, there is no information about...

8.8CVSS8.5AI score0.00542EPSS

Exploits1References5

0day.today•added 2012/03/06 12:0 a.m.•202 views

Zen Cart v.1.5.0 Remote Shell Upload

Exploit for php platform in category web applications Remote Shell Upload Vulnerability DaTe : 5.3.2012 Version : 1.5.0 Tested on: Linux " Ubuntu " , "win 7" Author : Mr.ExiT OrPh4n Email : email protected Site : sh4ck.com + v99x.com Dork : "Powered by Zen Cart" Software Link:...

7.1AI score

Exploits0

Exploit DB•added 2008/03/19 12:0 a.m.•23 views

CS-Cart 1.3.2 - 'index.php' Cross-Site Scripting

source: https://www.securityfocus.com/bid/28333/info CS-Cart is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score

Exploits0

exploitpack•added 2005/05/30 12:0 a.m.•13 views

Qualiteam X-Cart 4.0.8 - search.php?mode Cross-Site Scripting

Qualiteam X-Cart 4.0.8 - search.php?mode Cross-Site Scripting source: https://www.securityfocus.com/bid/13817/info X-Cart is prone to SQL injection and cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. These...

6.8AI score

Exploits0

Exploit DB•added 2005/05/30 12:0 a.m.•18 views

Qualiteam X-Cart 4.0.8 - 'orders.php?mode' Cross-Site Scripting

source: https://www.securityfocus.com/bid/13817/info X-Cart is prone to SQL injection and cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. These vulnerabilities could permit remote attackers to pass malicious inpu...

7.4AI score

Exploits0