SQL Injection Vulnerability in CubeCart by CubeCart Ltd.
CVE-2010-4903

Currently unrated

Key Information:

Vendor

Cubecart

Status
Cubecart
Vendor
CVE Published:
8 October 2011

What is CVE-2010-4903?

A SQL injection flaw exists in the index.php file of CubeCart version 4.3.3, allowing remote attackers to craft malicious inputs through the 'searchStr' parameter. Successful exploitation can lead to unauthorized execution of arbitrary SQL statements within the application's database, potentially compromising sensitive data or system integrity.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/archive/1/513572/100/0/threaded
mailing-listx_refsource_BUGTRAQ
http://www.acunetix.com/blog/web-security-zone/articles/s...
x_refsource_MISC
http://secunia.com/advisories/41352
third-party-advisoryx_refsource_SECUNIA

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.