Vulnerabilities > SPA Cart

DATE CVE VULNERABILITY TITLE RISK
2024-06-18 CVE-2024-6128 Unspecified vulnerability in Spa-Cart Spa-Cartcms 1.9.0.6
A vulnerability, which was classified as problematic, has been found in spa-cartcms 1.9.0.6.
network
low complexity
spa-cart
5.3
2024-06-18 CVE-2024-6129 Information Exposure Through Discrepancy vulnerability in Spa-Cart Spa-Cartcms 1.9.0.6
A vulnerability, which was classified as problematic, was found in spa-cartcms 1.9.0.6.
network
high complexity
spa-cart CWE-203
3.7
2023-10-12 CVE-2023-43148 Cross-Site Request Forgery (CSRF) vulnerability in Spa-Cart 1.9.0.3
SPA-Cart 1.9.0.3 has a Cross Site Request Forgery (CSRF) vulnerability that allows a remote attacker to delete all accounts.
network
low complexity
spa-cart CWE-352
8.1
2023-10-12 CVE-2023-43149 Cross-Site Request Forgery (CSRF) vulnerability in Spa-Cart 1.9.0.3
SPA-Cart 1.9.0.3 is vulnerable to Cross Site Request Forgery (CSRF) that allows a remote attacker to add an admin user with role status.
network
low complexity
spa-cart CWE-352
8.8
2023-08-26 CVE-2023-4548 Unspecified vulnerability in Spa-Cart Ecommerce CMS 1.9.0.3
A vulnerability classified as critical has been found in SPA-Cart eCommerce CMS 1.9.0.3.
network
low complexity
spa-cart
critical
9.8
2023-08-26 CVE-2023-4547 Cross-site Scripting vulnerability in Spa-Cart Ecommerce CMS 1.9.0.3
A vulnerability was found in SPA-Cart eCommerce CMS 1.9.0.3.
network
low complexity
spa-cart CWE-79
6.1