Cubecart

cubecart

Vendor: Cubecart • 29 CVEs

CVEs (29)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2026-35496 1Cubecart 1Cubecart Apr 20, 2026 Apr 17, 2026 5.1 MEDIUM· v4 2.7 LOW· v3 N/A· v2 A path traversal vulnerability exists in CubeCart prior to 6.6.0, which may allow a user with an administrative privilege to access higher-level directories that should not be accessible.
CVE-2026-34018 1Cubecart 1Cubecart Apr 20, 2026 Apr 17, 2026 5.1 MEDIUM· v4 9.8 CRITICAL· v3 N/A· v2 An SQL injection vulnerability exists in CubeCart prior to 6.6.0, which may allow an attacker to execute an arbitrary SQL statement on the product.
CVE-2026-21719 1Cubecart 1Cubecart Apr 20, 2026 Apr 17, 2026 8.6 HIGH· v4 7.2 HIGH· v3 N/A· v2 An OS command injection vulnerability exists in CubeCart prior to 6.6.0, which may allow a user with an administrative privilege to execute an arbitrary OS command.
CVE-2025-59413 1Cubecart 1Cubecart Sep 23, 2025 Sep 22, 2025 N/A· v4 6.5 MEDIUM· v3 N/A· v2 CubeCart is an ecommerce software solution. Prior to version 6.5.11, a logic flaw exists in the newsletter subscription endpoint that allows an attacker to unsubscribe any user without their consent. By changing the valu...Show more CubeCart is an ecommerce software solution. Prior to version 6.5.11, a logic flaw exists in the newsletter subscription endpoint that allows an attacker to unsubscribe any user without their consent. By changing the value of the force_unsubscribe parameter in the POST request to 1, an attacker can force the removal of any valid subscriber’s email address. This issue has been patched in version 6.5.11.Show less
CVE-2025-59412 1Cubecart 1Cubecart Sep 23, 2025 Sep 22, 2025 N/A· v4 5.4 MEDIUM· v3 N/A· v2 CubeCart is an ecommerce software solution. Prior to version 6.5.11, a vulnerability exists in the product reviews feature where user-supplied input is not properly sanitized before being displayed. An attacker can submi...Show more CubeCart is an ecommerce software solution. Prior to version 6.5.11, a vulnerability exists in the product reviews feature where user-supplied input is not properly sanitized before being displayed. An attacker can submit HTML tags inside the review description field. Once the administrator approves the review, the injected HTML is rendered on the product page for all visitors. This could be used to redirect users to malicious websites or to display unwanted content. This issue has been patched in version 6.5.11.Show less
CVE-2025-59411 1Cubecart 1Cubecart Sep 23, 2025 Sep 22, 2025 N/A· v4 5.4 MEDIUM· v3 N/A· v2 CubeCart is an ecommerce software solution. Prior to version 6.5.11, the contact form’s Enquiry field accepts raw HTML and that HTML is included verbatim in the email sent to the store admin. By submitting HTML in the En...Show more CubeCart is an ecommerce software solution. Prior to version 6.5.11, the contact form’s Enquiry field accepts raw HTML and that HTML is included verbatim in the email sent to the store admin. By submitting HTML in the Enquiry, the admin receives an email containing that HTML. This indicates user input is not being escaped or sanitized before being output in email (and possibly when re-rendering the form), leading to Cross-Site Scripting / HTML injection risk in email clients or admin UI. This issue has been patched in version 6.5.11.Show less
CVE-2025-59335 1Cubecart 1Cubecart Sep 23, 2025 Sep 22, 2025 N/A· v4 7.1 HIGH· v3 N/A· v2 CubeCart is an ecommerce software solution. Prior to version 6.5.11, there is an absence of automatic session expiration following a user's password change. This oversight poses a security risk, as if a user forgets to l...Show more CubeCart is an ecommerce software solution. Prior to version 6.5.11, there is an absence of automatic session expiration following a user's password change. This oversight poses a security risk, as if a user forgets to log out from a location where they accessed their account, an unauthorized user can maintain access even after the password has been changed. Due to this bug, if an account has already been compromised, the legitimate user has no way to revoke the attacker’s access. The malicious actor retains full access to the account until their session naturally expires. This means the account remains insecure even after the password has been changed. This issue has been patched in version 6.5.11.Show less
CVE-2024-34832 1Cubecart 1Cubecart Nov 21, 2024 Jun 6, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Directory Traversal vulnerability in CubeCart v.6.5.5 and before allows an attacker to execute arbitrary code via a crafted file uploaded to the _g and node parameters.
CVE-2024-33438 1Cubecart 1Cubecart Apr 16, 2025 Apr 29, 2024 N/A· v4 8.0 HIGH· v3 N/A· v2 File Upload vulnerability in CubeCart before 6.5.5 allows an authenticated user to execute arbitrary code via a crafted .phar file.
CVE-2023-47675 1Cubecart 1Cubecart Nov 21, 2024 Nov 17, 2023 N/A· v4 7.2 HIGH· v3 N/A· v2 CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to execute an arbitrary OS command.
CVE-2023-47283 1Cubecart 1Cubecart Nov 21, 2024 Nov 17, 2023 N/A· v4 4.9 MEDIUM· v3 N/A· v2 Directory traversal vulnerability in CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to obtain files in the system.
CVE-2023-42428 1Cubecart 1Cubecart Nov 21, 2024 Nov 17, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 Directory traversal vulnerability in CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to delete directories and files in the system.
CVE-2023-38130 1Cubecart 1Cubecart Nov 21, 2024 Nov 17, 2023 N/A· v4 8.1 HIGH· v3 N/A· v2 Cross-site request forgery (CSRF) vulnerability in CubeCart prior to 6.5.3 allows a remote unauthenticated attacker to delete data in the system.
CVE-2021-33394 1Cubecart 1Cubecart Nov 21, 2024 May 27, 2021 N/A· v4 5.4 MEDIUM· v3 5.5 MEDIUM· v2 Cubecart 6.4.2 allows Session Fixation. The application does not generate a new session cookie after the user is logged in. A malicious user is able to create a new session cookie value and inject it to a victim. After t...Show more Cubecart 6.4.2 allows Session Fixation. The application does not generate a new session cookie after the user is logged in. A malicious user is able to create a new session cookie value and inject it to a victim. After the victim logs in, the injected cookie becomes valid, giving the attacker access to the user's account through the active session.Show less
CVE-2018-20716 1Cubecart 1Cubecart Nov 21, 2024 Jan 15, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 CubeCart before 6.1.13 has SQL Injection via the validate[] parameter of the "I forgot my Password!" feature.
CVE-2018-20703 1Cubecart 1Cubecart Nov 21, 2024 Jan 13, 2019 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 CubeCart 6.2.2 has Reflected XSS via a /{ADMIN-FILE}/ query string.
CVE-2017-2117 1Cubecart 1Cubecart May 13, 2026 Apr 28, 2017 N/A· v4 4.9 MEDIUM· v3 4.0 MEDIUM· v2 Directory traversal vulnerability in CubeCart versions prior to 6.1.5 allows attacker with administrator rights to read arbitrary files via unspecified vectors.
CVE-2017-2098 1Cubecart 1Cubecart May 13, 2026 Apr 28, 2017 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 Directory traversal vulnerability in CubeCart versions prior to 6.1.4 allows remote authenticated attackers to read arbitrary files via unspecified vectors.
CVE-2017-2090 1Cubecart 1Cubecart May 13, 2026 Apr 28, 2017 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 Directory traversal vulnerability in CubeCart versions prior to 6.1.4 allows remote authenticated attackers to read arbitrary files via unspecified vectors.
CVE-2015-6928 1Cubecart 1Cubecart May 6, 2026 Sep 28, 2015 N/A· v4 N/A· v3 6.8 MEDIUM· v2 classes/admin.class.php in CubeCart 5.2.12 through 5.2.16 and 6.x before 6.0.7 does not properly validate that a password reset request was made, which allows remote attackers to change the administrator password via a r...Show more classes/admin.class.php in CubeCart 5.2.12 through 5.2.16 and 6.x before 6.0.7 does not properly validate that a password reset request was made, which allows remote attackers to change the administrator password via a recovery request with a space character in the validate parameter and the administrator email in the email parameter.Show less

12 Next