CubeCart Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) Vulnerability - CVE-2026-21719 - Vulnerability Database

CubeCart

CubeCart Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) Vulnerability - CVE-2026-21719

High

Reference: CVE-2026-21719

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2026-21719

Title: CubeCart Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) Vulnerability

Overview:

An OS command injection vulnerability exists in CubeCart prior to 6.6.0 which may allow a user with an administrative privilege to execute an arbitrary OS command.