4 matches found
CVE-2019-7220
X-Cart V5 is vulnerable to XSS via the CategoryFilter2 parameter...
Qualiteam X-Cart 4.0.8 - search.php?mode Cross-Site Scripting
Qualiteam X-Cart 4.0.8 - search.php?mode Cross-Site Scripting source: https://www.securityfocus.com/bid/13817/info X-Cart is prone to SQL injection and cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. These...
Qualiteam X-Cart 4.0.8 - 'orders.php?mode' Cross-Site Scripting
source: https://www.securityfocus.com/bid/13817/info X-Cart is prone to SQL injection and cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. These vulnerabilities could permit remote attackers to pass malicious inpu...
CVE-2004-0242
X-Cart 3.4.3 allows remote attackers to gain sensitive information via a mode parameter with 1 phpinfo command or 2 perlinfo command...