RSS   Vulnerabilities for 'Olivecartpro'   RSS

2017-05-22
 
CVE-2016-4905

 

 
SQL injection vulnerability in the WP-OliveCart versions prior to 3.1.3 and WP-OliveCartPro versions prior to 3.1.8 allows attackers with administrator rights to execute arbitrary SQL commands via unspecified vectors.

 
 
CVE-2016-4904

 

 
Cross-site request forgery (CSRF) vulnerability in WP-OliveCart versions prior to 3.1.3 and WP-OliveCartPro versions prior to 3.1.8 allows remote attackers to hijack the authentication of a user to perform unintended operations via unspecified vectors.

 
 
CVE-2016-4903

 

 
Cross-site scripting vulnerability in WP-OliveCart versions prior to 3.1.3 and WP-OliveCartPro versions prior to 3.1.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

 

 >>> Vendor: Wp-olivecart 2 Products
Olivecart
Olivecartpro


Copyright 2024, cxsecurity.com

 

Back to Top