Security Advisory

CVE-2010-1931

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2010-06-10 00:00:00

Last updated 2024-08-07 02:17:12

Assigner mitre

State PUBLISHED

Description

SQL injection vulnerability in includes/content/cart.inc.php in CubeCart PHP Shopping cart 4.3.4 through 4.3.9 allows remote attackers to execute arbitrary SQL commands via the shipKey parameter to index.php.

← Browse all CVEs View on cve.org ↗