7 matches found
EUVD-2018-11157
Malware in sbrugna...
CVE-2020-18158
Cross Site Scripting XSS vulnerability in HuCart 5.7.4 via nickname in index.php...
Cross site scripting
Cross Site Scripting XSS vulnerability in HuCart 5.7.4 via nickname in index.php...
CVE-2020-18158
Cross Site Scripting XSS vulnerability in HuCart 5.7.4 via nickname in index.php...
CVE-2020-18158
Technical details about CVE-2020-18158 are not publicly provided in the supplied documents. No confirmed affected versions or fixes are listed here. Monitor for updates from vendors and security advisories.
Sql injection
HuCart 5.7.4 has SQL injection in getip in system/class/helperclass.php via the X-Forwarded-For HTTP header to the user/index.php?load=login&act=actlogin URI...
CVE-2018-19468
HuCart 5.7.4 has SQL injection in getip in system/class/helperclass.php via the X-Forwarded-For HTTP header to the user/index.php?load=login&act=actlogin URI...