Quick.cart Security Vulnerabilities and Issues — Quick.cart CVE List

Lucene search

Open SolutionQuick.cart

3 matches found

CVE•added 2005/05/14 4:0 a.m.•37 views

CVE-2005-1588

SQL injection vulnerability in index.php for Quick.cart 0.3.0 allows remote attackers to execute arbitrary SQL commands via the iCategory parameter. NOTE: the vendor has privately disputed this issue, saying that Quick.cart does not even use SQL and therefore can not be vulnerable to SQL injection

7.5CVSS8.8AI score0.00451EPSS

CVE•added 2007/03/10 10:19 p.m.•37 views

CVE-2007-1407

Unspecified vulnerability in OpenSolution Quick.Cart before 2.1 has unknown impact and attack vectors, related to a "low critical exploit."

7.5CVSS6.5AI score0.00323EPSS

CVE•added 2007/06/08 4:30 p.m.•33 views

CVE-2007-3138

Directory traversal vulnerability in index.php in Open Solution Quick.Cart 2.2 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in an sLanguage cookie, which is used to define a value in config/general.php.

7.5CVSS7.2AI score0.08189EPSS