Lucene search
K

42 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-9130

Malware in sbrugna...

6.5CVSS6.4AI score0.03721EPSS
Exploits2References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.16 views

EUVD-2013-5807

Malware in sbrugna...

6.8CVSS6.1AI score0.03154EPSS
Exploits6References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.16 views

EUVD-2013-5808

Malware in sbrugna...

6.1CVSS6.1AI score0.04084EPSS
Exploits6References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-9263

Malware in sbrugna...

6.5CVSS6.4AI score0.01756EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-9281

Malware in sbrugna...

3.5CVSS6.4AI score0.0206EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/05/22 5:9 a.m.7 views

CVE-2014-9442

SQL injection vulnerability in models/Cart66Ajax.php in the Cart66 Lite plugin before 1.5.4 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the q parameter in a promotionProductSearch action to wp-admin/admin-ajax.php...

6.5CVSS8.4AI score0.01756EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 2:39 a.m.8 views

CVE-2014-9461

Directory traversal vulnerability in models/Cart66.php in the Cart66 Lite plugin before 1.5.4 for WordPress allows remote authenticated users to read arbitrary files via a .. dot dot in the memberdownload action to wp-admin/admin-ajax.php...

3.5CVSS6.6AI score0.0206EPSS
Exploits1References1
NVD
NVD
added 2019/12/11 7:15 p.m.33 views

CVE-2013-5978

Multiple cross-site scripting XSS vulnerabilities in products.php in the Cart66 Lite plugin before 1.5.1.15 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 Product name or 2 Price description fields via a request to wp-admin/admin.php. NOTE: This issue may on...

6.1CVSS6.2AI score0.04084EPSS
Exploits6References7
Prion
Prion
added 2019/12/11 7:15 p.m.21 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in products.php in the Cart66 Lite plugin before 1.5.1.15 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 Product name or 2 Price description fields via a request to wp-admin/admin.php. NOTE: This issue may on...

4.3CVSS5.9AI score0.04084EPSS
Exploits7References7Affected Software1
Cvelist
Cvelist
added 2019/12/11 6:36 p.m.41 views

CVE-2013-5978

Multiple cross-site scripting XSS vulnerabilities in products.php in the Cart66 Lite plugin before 1.5.1.15 for WordPress allow remote attackers to inject arbitrary web script or HTML via the 1 Product name or 2 Price description fields via a request to wp-admin/admin.php. NOTE: This issue may on...

6.2AI score0.04084EPSS
Exploits6References7
CVE
CVE
added 2019/12/11 6:36 p.m.98 views

CVE-2013-5978

CVE-2013-5978 : In the WordPress Cart66 Lite plugin (affected version: before 1.5.1.15), multiple XSS vulnerabilities exist in the products.php functionality. Remote attackers can inject arbitrary web script or HTML via the 1) Product name or 2) Price description fields in requests to wp-admin/ad...

6.1CVSS6AI score0.04084EPSS
Exploits6References7Affected Software1
CNVD
CNVD
added 2019/06/17 12:0 a.m.2 views

Wordpress Plugin Cart66 Lite DatabaseSQL Backup Leakage Vulnerability

WordPress is a blogging platform based on the PHP language, which can be used to set up a website on a server that supports PHP and MySQL databases, and can also be used as a content management system CMS. An attacker backup disclosure vulnerability exists in the Wordpress plugin Cart66 Lite...

6AI score
Exploits0References1
Packet Storm
Packet Storm
added 2018/12/04 12:0 a.m.36 views

WordPress cart66 cart66-lite 1.0 Database Disclosure

Exploit Title : WordPress cart66 cart66-lite Plugins 1.0 Database Backup Disclosure Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 03/12/2018 Vendor Homepage : cart66.com wordpress.org/plugins/tags/cart66/ github.com/wp-plugins/cart66-lite Software Download Link ...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2016/03/27 12:0 a.m.14 views

WordPress Cart66 Lite插件 status 参数跨站脚本漏洞

No description provided by source...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2015/02/09 12:0 a.m.26 views

WordPress Cart66 Lite 1.5.4 Cross Site Scripting

Title: WordPress 'Cart66 Lite :: WordPress Ecommerce' plugin - Reflected XSS Version: 1.5.4 Author: Morten Nørtoft, Kenneth Jepsen, Mikkel Vej Date: 2015/01/26 Download: https://wordpress.org/plugins/cart66-lite/ Contacted WordPress: 2015/01/26...

7AI score
Exploits0
WPVulnDB
WPVulnDB
added 2015/01/26 12:0 a.m.12 views

Cart66 Lite 1.5.4 - XSS

The cart66-lite WordPress plugin was affected by a XSS security vulnerability...

2.2AI score
Exploits0References1Affected Software1
CNVD
CNVD
added 2015/01/08 12:0 a.m.2 views

WordPress Plugin Cart66 Lite SQL Injection Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site. Cart66 Lite plugin is an e-commerce plugin developed by cart66 for wordpress. A SQL injection vulnerability exist...

6.5CVSS8.3AI score0.01756EPSS
Exploits1References1
CNVD
CNVD
added 2015/01/05 12:0 a.m.2 views

WordPress Plugin Cart66 Lite 'models/Cart66.php' Directory Traversal Vulnerability

WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. A directory traversal vulnerability exists in WordPress plugin Cart66 Lite 'models/Cart66.php' versions prior to 1.5.4, which...

3.5CVSS6.6AI score0.0206EPSS
Exploits1References1
NVD
NVD
added 2015/01/02 10:59 p.m.20 views

CVE-2014-9461

Directory traversal vulnerability in models/Cart66.php in the Cart66 Lite plugin before 1.5.4 for WordPress allows remote authenticated users to read arbitrary files via a .. dot dot in the memberdownload action to wp-admin/admin-ajax.php...

3.5CVSS6.2AI score0.0206EPSS
Exploits1References3
Prion
Prion
added 2015/01/02 10:59 p.m.18 views

Directory traversal

Directory traversal vulnerability in models/Cart66.php in the Cart66 Lite plugin before 1.5.4 for WordPress allows remote authenticated users to read arbitrary files via a .. dot dot in the memberdownload action to wp-admin/admin-ajax.php...

3.5CVSS6.7AI score0.0206EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder