X-cart Security Vulnerabilities and Issues — X-cart CVE List

Lucene search

QualiteamX-cart

5 matches found

CVE•added 2012/08/15 8:55 p.m.•45 views

CVE-2012-2570

Cross-site scripting (XSS) vulnerability in products_map.php in X-Cart Gold 4.5 allows remote attackers to inject arbitrary web script or HTML via the symb parameter.

4.3CVSS5.9AI score0.02695EPSS

CVE•added 2005/06/01 4:0 a.m.•42 views

CVE-2005-1823

Multiple cross-site scripting (XSS) vulnerabilities in Qualiteam X-Cart 4.0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) cat or (2) printable parameter to home.php, (3) productid or (4) mode parameter to product.php, (5) id parameter to error_message.php, (6) section ...

4.3CVSS5.8AI score0.00459EPSS

CVE•added 2015/04/05 1:59 a.m.•42 views

CVE-2015-0950

Cross-site scripting (XSS) vulnerability in admin.php in X-Cart 5.1.6 through 5.1.10 allows remote attackers to inject arbitrary web script or HTML via the substring parameter.

4.3CVSS5.9AI score0.00457EPSS

CVE•added 2015/01/26 3:59 p.m.•41 views

CVE-2015-1178

Multiple cross-site scripting (XSS) vulnerabilities in cart.php in X-Cart 5.1.8 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) product_id or (2) category_id parameter.

4.3CVSS5.8AI score0.00254EPSS

CVE•added 2015/07/08 3:59 p.m.•37 views

CVE-2015-5455

Cross-site scripting (XSS) vulnerability in X-Cart 4.5.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors to install/.

4.3CVSS5.8AI score0.00225EPSS