CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

18 matches found

RedhatCVE•added 2026/01/07 9:27 a.m.•4 views

CVE-2019-12241

The Carts Guru plugin 1.4.5 for WordPress allows Insecure Deserialization via a cartsguru-source cookie to classes/wc-cartsguru-event-handler.php...

9.8CVSS6.9AI score0.00786EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-3886

Malware in sbrugna...

9.8CVSS9.5AI score0.00786EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-43349

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00173EPSS

Exploits1References2

OSV•added 2023/10/05 8:15 p.m.•1 views

CVE-2023-40920

Prixan prixanconnect up to v1.62 was discovered to contain a SQL injection vulnerability via the component CartsGuruCatalogModuleFrontController::importProducts...

9.8CVSS5.7AI score0.0007EPSS

Exploits1References1

CNNVD•added 2023/10/05 12:0 a.m.•2 views

PrestaShop SQL Injection Vulnerability

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides multiple payment methods, SMS alerts, and product image scaling. A security vulnerability exists in PrestaShop, which originates from Prixan prixanconnect's...

9.8CVSS8AI score0.0007EPSS

Exploits1References2

ATTACKERKB•added 2023/09/15 12:15 a.m.•1 views

CVE-2023-39642

Carts Guru cartsguru up to v2.4.2 was discovered to contain a SQL injection vulnerability via the component CartsGuruCatalogModuleFrontController::display...

9.8CVSS5.7AI score0.00173EPSS

Exploits1References3

OSV•added 2023/09/15 12:15 a.m.•3 views

CVE-2023-39642

Carts Guru cartsguru up to v2.4.2 was discovered to contain a SQL injection vulnerability via the component CartsGuruCatalogModuleFrontController::display...

9.8CVSS7.2AI score0.00173EPSS

Exploits1References2

NVD•added 2023/09/15 12:15 a.m.•7 views

CVE-2023-39642

Carts Guru cartsguru up to v2.4.2 was discovered to contain a SQL injection vulnerability via the component CartsGuruCatalogModuleFrontController::display...

9.8CVSS9.8AI score0.00173EPSS

Exploits1References2

Prion•added 2023/09/15 12:15 a.m.•19 views

Sql injection

Carts Guru cartsguru up to v2.4.2 was discovered to contain a SQL injection vulnerability via the component CartsGuruCatalogModuleFrontController::display...

7.5CVSS9.7AI score0.00173EPSS

Exploits1References2Affected Software1

Cvelist•added 2023/09/14 12:0 a.m.•11 views

CVE-2023-39642

Carts Guru cartsguru up to v2.4.2 was discovered to contain a SQL injection vulnerability via the component CartsGuruCatalogModuleFrontController::display...

10AI score0.00173EPSS

Exploits1References2

Positive Technologies•added 2023/09/14 12:0 a.m.•2 views

PT-2023-27046 · Unknown · Carts Guru

Name of the Vulnerable Software and Affected Versions: Carts Guru versions up to 2.4.2 Description: The issue is related to a SQL injection vulnerability. It affects the component CartsGuruCatalogModuleFrontController::display. Recommendations: For versions up to 2.4.2, consider restricting acces...

9.8CVSS9.6AI score0.00173EPSS

Exploits1References4

CVE•added 2023/09/14 12:0 a.m.•35 views

CVE-2023-39642

CVE-2023-39642 affects Carts Guru (PrestaShop) up to version 2.4.2. The vulnerability is a SQL injection in the Catalog display handler, specifically the component FrontController::display() of CartsGuruCatalogModuleFrontController. The connected documents consistently identify the vulnerable com...

9.8CVSS9.7AI score0.00173EPSS

Exploits1References2Affected Software1

CNNVD•added 2023/09/14 12:0 a.m.•1 views

PrestaShop Carts Guru SQL Injection Vulnerability

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides multiple payment methods, short message alerts, and product image scaling. A security vulnerability exists in Carts Guru version v2.4.2, which originates from the component...

9.8CVSS8AI score0.00173EPSS

Exploits1References4

Prion•added 2019/05/20 8:29 p.m.•10 views

Deserialization of untrusted data

The Carts Guru plugin 1.4.5 for WordPress allows Insecure Deserialization via a cartsguru-source cookie to classes/wc-cartsguru-event-handler.php...

7.5CVSS9.2AI score0.00786EPSS

Exploits1References2Affected Software1

Cvelist•added 2019/05/20 7:39 p.m.•11 views

CVE-2019-12241

The Carts Guru plugin 1.4.5 for WordPress allows Insecure Deserialization via a cartsguru-source cookie to classes/wc-cartsguru-event-handler.php...

9.4AI score0.00786EPSS

Exploits1References2

CVE•added 2019/05/20 7:39 p.m.•64 views

CVE-2019-12241

CVE-2019-12241 affects the Carts Guru WordPress plugin up to version 1.4.5. The Red Hat and NVD records confirm an insecure deserialization flaw triggered by a cartsguru-source cookie that targets classes/wc-cartsguru-event-handler.php, enabling unauthenticated access with high impact. CVSS3 base...

9.8CVSS9.2AI score0.00786EPSS

Exploits1References2Affected Software1

CNVD•added 2019/05/20 12:0 a.m.•1 views

WordPress Carts Guru plugin deserialization vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Carts Guru plugin is an e-commerce plugin used in it. A security vulnerability exists in version 1.4.5 of the WordPress Carts Guru...

9.8CVSS6.8AI score0.00786EPSS

Exploits1References1

WPVulnDB•added 2019/05/07 12:0 a.m.•20 views

Carts Guru <= 1.4.4 - Unauthenticated Object Injection

The Carts Guru WordPress plugin was affected by an Unauthenticated Object Injection security vulnerability...

7.5CVSS2.7AI score0.00786EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by