Vulnerabilities (CVE)

Filtered by vendor Wp-olivecart Subscribe
Filtered by product Olivecart
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2016-4905 1 Wp-olivecart 2 Olivecart, Olivecartpro 2024-02-04 7.5 HIGH 9.8 CRITICAL
SQL injection vulnerability in the WP-OliveCart versions prior to 3.1.3 and WP-OliveCartPro versions prior to 3.1.8 allows attackers with administrator rights to execute arbitrary SQL commands via unspecified vectors.
CVE-2016-4903 1 Wp-olivecart 2 Olivecart, Olivecartpro 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in WP-OliveCart versions prior to 3.1.3 and WP-OliveCartPro versions prior to 3.1.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2016-4904 1 Wp-olivecart 2 Olivecart, Olivecartpro 2024-02-04 6.8 MEDIUM 8.8 HIGH
Cross-site request forgery (CSRF) vulnerability in WP-OliveCart versions prior to 3.1.3 and WP-OliveCartPro versions prior to 3.1.8 allows remote attackers to hijack the authentication of a user to perform unintended operations via unspecified vectors.