Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo

E-Commerce

CubeCart

CubeCart is a complete ecommerce shopping cart software solution. With CubeCart you can quickly setup a powerful online store to sell digital or tangible products to new and existing customers globally. Established in 2003 CubeCart is a hugely popular eCommerce solution enjoyed by tens of thousands of merchants globally.

Official Site:

https://www.cubecart.com/

Severity Summary:

Critical: 2 High: 7 Medium: 12
Reference
Title
Severity
CVE-2018-20716
CubeCart Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Critical
CVE-2024-34832
CubeCart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Critical
CVE-2010-1931
CubeCart Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2009-3904
CubeCart Permissions Privileges and Access Controls Vulnerability
High
CVE-2023-47675
CubeCart Improper Neutralization of Special Elements used in an OS Command (OS Command Injection) Vulnerability
High
CVE-2013-1465
CubeCart Improper Input Validation Vulnerability
High
CVE-2023-38130
CubeCart Cross-Site Request Forgery (CSRF) Vulnerability
High
CVE-2010-4903
CubeCart Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2009-4060
CubeCart Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
High
CVE-2023-47283
CubeCart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2023-42428
CubeCart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2021-33394
CubeCart Session Fixation Vulnerability
Medium
CVE-2008-1550
CubeCart Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2017-2117
CubeCart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2017-2098
CubeCart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2018-20703
CubeCart Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2012-0865
CubeCart Improper Input Validation Vulnerability
Medium
CVE-2014-2341
CubeCart Improper Authentication Vulnerability
Medium
CVE-2015-6928
CubeCart Improper Access Control Vulnerability
Medium
CVE-2017-2090
CubeCart Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Medium
CVE-2011-3724
CubeCart Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium