Ckgold Shopping Cart Security Vulnerabilities and Issues — Ckgold Shopping Cart CVE List

Lucene search

CartkeeperCkgold Shopping Cart

3 matches found

CVE•added 2005/12/14 11:3 a.m.•37 views

CVE-2005-4236

Cross-site scripting (XSS) vulnerability in search.php in CKGOLD allows remote attackers to inject arbitrary web script or HTML via the search parameters.

4.3CVSS6AI score0.00427EPSS

CVE•added 2007/09/06 7:17 p.m.•37 views

CVE-2007-4736

SQL injection vulnerability in category.php in CartKeeper CKGold Shopping Cart 2.0 allows remote attackers to execute arbitrary SQL commands via the category_id parameter.

7.5CVSS8.3AI score0.00323EPSS

CVE•added 2008/06/19 8:41 p.m.•36 views

CVE-2008-2774

SQL injection vulnerability in item.php in CartKeeper CKGold Shopping Cart 2.5 and 2.7 allows remote attackers to execute arbitrary SQL commands via the category_id parameter, a different vector than CVE-2007-4736.

7.5CVSS8.2AI score0.00323EPSS