Vulnerabilities > SPA Cart

DATE	CVE	VULNERABILITY TITLE	RISK
2023-10-12	CVE-2023-43148	Cross-Site Request Forgery (CSRF) vulnerability in Spa-Cart 1.9.0.3 SPA-Cart 1.9.0.3 has a Cross Site Request Forgery (CSRF) vulnerability that allows a remote attacker to delete all accounts. network low complexity spa-cart CWE-352	8.1
2023-10-12	CVE-2023-43149	Cross-Site Request Forgery (CSRF) vulnerability in Spa-Cart 1.9.0.3 SPA-Cart 1.9.0.3 is vulnerable to Cross Site Request Forgery (CSRF) that allows a remote attacker to add an admin user with role status. network low complexity spa-cart CWE-352	8.8
2023-08-26	CVE-2023-4548	SQL Injection vulnerability in Spa-Cart Ecommerce CMS 1.9.0.3 A vulnerability classified as critical has been found in SPA-Cart eCommerce CMS 1.9.0.3. network low complexity spa-cart CWE-89 critical	9.8
2023-08-26	CVE-2023-4547	Cross-site Scripting vulnerability in Spa-Cart Ecommerce CMS 1.9.0.3 A vulnerability was found in SPA-Cart eCommerce CMS 1.9.0.3. network low complexity spa-cart CWE-79	6.1

Vulnerabilities > SPA Cart {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"SPA Cart"}]}