| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2015-2183 | 7.5 |
Multiple SQL injection vulnerabilities in the administrative backend in ZeusCart 4 allow remote administrators to execute arbitrary SQL commands via the id parameter in a (1) disporders detail or (2) subadminmgt edit action or (3) cid parameter in an
|
28-07-2015 - 15:05 | 10-03-2015 - 14:59 | |
| CVE-2015-2182 | 4.3 |
Multiple cross-site scripting (XSS) vulnerabilities in ZeusCart 4 allow remote attackers to inject arbitrary web script or HTML via the (1) schltr parameter in a brands action or (2) brand parameter in a viewbrands action to index.php. NOTE: The sea
|
11-03-2015 - 19:38 | 11-03-2015 - 14:59 | |
| CVE-2010-5322 | 4.3 |
Cross-site scripting (XSS) vulnerability in ZeusCart 4.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the search parameter in a search action to index.php.
|
11-03-2015 - 15:05 | 11-03-2015 - 14:59 | |
| CVE-2015-2184 | 5.0 |
ZeusCart 4 allows remote attackers to obtain configuration information via a getphpinfo action to admin/, which calls the phpinfo function.
|
11-03-2015 - 14:55 | 10-03-2015 - 14:59 |