Cs-cart - Cs-cart CVE

Filtered by vendor Cs-cart Subscribe

Filtered by product Cs-cart

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2017-15673	1 Cs-cart	1 Cs-cart	2017-12-20	9.0 HIGH	7.2 HIGH
The files function in the administration section in CS-Cart 4.6.2 and earlier allows attackers to execute arbitrary PHP code via vectors involving a custom page.
CVE-2016-4862	1 Cs-cart	1 Cs-cart	2017-04-26	6.5 MEDIUM	8.8 HIGH
Twigmo bundled with CS-Cart 4.3.9 and earlier and Twigmo bundled with CS-Cart Multi-Vendor 4.3.9 and earlier allow remote authenticated users to execute arbitrary PHP code on the servers.

Vulnerabilities (CVE)