Vulnerabilities > Cubecart

DATE	CVE	VULNERABILITY TITLE	RISK
2017-04-28	CVE-2017-2090	Path Traversal vulnerability in Cubecart Directory traversal vulnerability in CubeCart versions prior to 6.1.4 allows remote authenticated attackers to read arbitrary files via unspecified vectors. network low complexity cubecart CWE-22	6.5
2013-02-08	CVE-2013-1465	Deserialization of Untrusted Data vulnerability in Cubecart The Cubecart::_basket method in classes/cubecart.class.php in CubeCart 5.0.0 through 5.2.0 allows remote attackers to unserialize arbitrary PHP objects via a crafted shipping parameter, as demonstrated by modifying the application configuration using the Config object. network low complexity cubecart CWE-502 critical	9.8

Vulnerabilities > Cubecart {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Cubecart"}]}