CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2025/05/23 9:35 a.m.•4 views

CVE-2024-22551

WhatACart v2.0.7 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /site/default/search...

6.1CVSS6.1AI score0.00147EPSS

Exploits1References1

OSV•added 2024/01/26 3:15 p.m.•0 views

CVE-2024-22551

WhatACart v2.0.7 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /site/default/search...

6.1CVSS5.7AI score

Exploits0References1

NVD•added 2024/01/26 3:15 p.m.•6 views

CVE-2024-22551

WhatACart v2.0.7 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /site/default/search...

6.1CVSS6.1AI score0.00147EPSS

Exploits1References1

Prion•added 2024/01/26 3:15 p.m.•13 views

Cross site scripting

WhatACart v2.0.7 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /site/default/search...

5.8CVSS6.3AI score0.00147EPSS

Exploits1References1Affected Software1

CNNVD•added 2024/01/26 12:0 a.m.•1 views

Usha InformatiqueC WhatACart Cross-Site Scripting Vulnerability

Usha InformatiqueC WhatACart is an open source online e-commerce solution from Usha InformatiqueC built on the Yii2 framework. A cross-site scripting vulnerability exists in Usha InformatiqueC WhatACart version v2.0.7, which stems from cross-site scripting contained in the component...

6.1CVSS6.2AI score0.00147EPSS

Exploits1References2

Cvelist•added 2024/01/26 12:0 a.m.•15 views

CVE-2024-22551

WhatACart v2.0.7 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /site/default/search...

6.2AI score0.00147EPSS

Exploits1References1

Vulnrichment•added 2024/01/26 12:0 a.m.•4 views

CVE-2024-22551

WhatACart v2.0.7 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /site/default/search...

6.1AI score0.00147EPSS

Exploits1References1

Positive Technologies•added 2024/01/26 12:0 a.m.•2 views

PT-2024-19484 · Whatacart · Whatacart

Name of the Vulnerable Software and Affected Versions: WhatACart version 2.0.7 Description: A reflected cross-site scripting XSS issue was discovered in WhatACart via the /site/default/search component. This allows for potential malicious script injection and execution. Recommendations: For...

6.1CVSS6.3AI score0.00147EPSS

Exploits1References6

CVE•added 2024/01/26 12:0 a.m.•39 views

CVE-2024-22551

WhatACart v2.0.7 is affected by a reflected cross-site scripting (XSS) vulnerability via the /site/default/search component. The issue is documented across multiple sources (CVE-2024-22551) and originates from input handling in that search endpoint. The CVSS v3.1 base score is 6.1 (Medium), with ...

6.1CVSS6AI score0.00147EPSS

Exploits1References1Affected Software1

0day.today•added 2023/12/29 12:0 a.m.•281 views

WhatACart 2.0.7 Cross Site Scripting Vulnerability

Exploit Title: WhatACart Version: 2.0.7 - Reflected XSS Date: 2023-12-27 Exploit Author: tmrswrr Category : Webapps Vendor Homepage: https://whatacart.com Version: 2.0.7 Tested on: https://whatacart.com/demo 1 Go to this page : https://demo.whatacart.com/ 2 Write search field this payload :...

7.4AI score

Exploits0

Packet Storm•added 2023/12/27 12:0 a.m.•231 views

WhatACart 2.0.7 Cross Site Scripting

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by