Description

SQL injection vulnerability in index.php in CubeCart 4.3.3 allows remote attackers to execute arbitrary SQL commands via the searchStr parameter.

Remediation

References

CVE-2010-4903

Related Vulnerabilities

WordPress Plugin Content Control-User Access Restriction Cross-Site Scripting (1.1.9)

WordPress Plugin Seo Spy Arbitrary File Upload (2.6)

WordPress Plugin WP Cost Estimation & Payment Forms Builder Directory Traversal (9.659)

WordPress Plugin Target First Live chat Unspecified Vulnerability (1.0)

MySQL CVE-2016-0643 Vulnerability (CVE-2016-0643)

Severity

High

Classification

CVE-2010-4903 CWE-138

Tags

Missing Update Known Vulnerabilities