Lucene search
K

11 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.16 views

EUVD-2013-5807

Malware in sbrugna...

6.8CVSS6.1AI score0.03154EPSS
Exploits6References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.16 views

EUVD-2013-5808

Malware in sbrugna...

6.1CVSS6.1AI score0.04084EPSS
Exploits6References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-9263

Malware in sbrugna...

6.5CVSS6.4AI score0.01756EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-9281

Malware in sbrugna...

3.5CVSS6.4AI score0.0206EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/05/22 5:9 a.m.7 views

CVE-2014-9442

SQL injection vulnerability in models/Cart66Ajax.php in the Cart66 Lite plugin before 1.5.4 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the q parameter in a promotionProductSearch action to wp-admin/admin-ajax.php...

6.5CVSS8.4AI score0.01756EPSS
Exploits1References1
CVE
CVE
added 2015/01/02 10:0 p.m.46 views

CVE-2014-9461

CVE-2014-9461 affects the WordPress plugin Cart66 Lite (models/Cart66.php). The vulnerability is a directory traversal in the member_download action via “..” exposed to wp-admin/admin-ajax.php, allowing authenticated remote users to read arbitrary files. Affected version: Cart66 Lite prior to 1.5...

3.5CVSS6.4AI score0.0206EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2015/01/02 7:59 p.m.13 views

Sql injection

SQL injection vulnerability in models/Cart66Ajax.php in the Cart66 Lite plugin before 1.5.4 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the q parameter in a promotionProductSearch action to wp-admin/admin-ajax.php...

6.5CVSS8.6AI score0.01756EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2015/01/02 7:0 p.m.21 views

CVE-2014-9442

SQL injection vulnerability in models/Cart66Ajax.php in the Cart66 Lite plugin before 1.5.4 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the q parameter in a promotionProductSearch action to wp-admin/admin-ajax.php...

7.9AI score0.01756EPSS
Exploits1References4
Prion
Prion
added 2014/12/08 4:59 p.m.13 views

Sql injection

SQL injection vulnerability in the shortcodeProductsTable function in models/Cart66Ajax.php in the Cart66 Lite plugin before 1.5.2 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the id parameter in a shortcodeproductstable action to wp-admin/admin-ajax.php...

6.5CVSS8.6AI score0.03721EPSS
Exploits2References5Affected Software1
NVD
NVD
added 2013/11/01 3:55 p.m.34 views

CVE-2013-5977

Cross-site request forgery CSRF vulnerability in Cart66Product.php in the Cart66 Lite plugin before 1.5.1.15 for WordPress allows remote attackers to hijack the authentication of administrators for requests that 1 create or modify products or conduct cross-site scripting XSS attacks via the 2...

6.8CVSS6.4AI score0.03154EPSS
Exploits6References10
Cvelist
Cvelist
added 2013/11/01 2:0 p.m.46 views

CVE-2013-5977

Cross-site request forgery CSRF vulnerability in Cart66Product.php in the Cart66 Lite plugin before 1.5.1.15 for WordPress allows remote attackers to hijack the authentication of administrators for requests that 1 create or modify products or conduct cross-site scripting XSS attacks via the 2...

6.4AI score0.03154EPSS
Exploits6References10
Rows per page
Query Builder