Vulnerabilities > Carts Guru

DATE	CVE	VULNERABILITY TITLE	RISK
2023-09-15	CVE-2023-39642	SQL Injection vulnerability in Carts.Guru Cartsguru 2.4.2 Carts Guru cartsguru up to v2.4.2 was discovered to contain a SQL injection vulnerability via the component CartsGuruCatalogModuleFrontController::display(). network low complexity carts-guru CWE-89 critical	9.8
2019-05-20	CVE-2019-12241	Deserialization of Untrusted Data vulnerability in Carts.Guru Carts Guru 1.4.5 The Carts Guru plugin 1.4.5 for WordPress allows Insecure Deserialization via a cartsguru-source cookie to classes/wc-cartsguru-event-handler.php. network low complexity carts-guru CWE-502 critical	9.8

Vulnerabilities > Carts Guru {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Carts Guru"}]}