Every CVE whose affected-product data names Alan Ward A-cart, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2004-1873 — CVSS 7.5 (high): SQL injection vulnerability in category.asp in A-CART Pro and A-CART 2.0 allows remote attackers to gain privileges via the catcode…
CVE-2006-6111 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in Alan Ward A-Cart Pro 2.0 allow remote attackers to execute arbitrary SQL commands via the (1)…
CVE-2006-2948 — CVSS 5.0 (medium): A-CART 2.0 stores the acart2_0.mdb file under the web document root with insufficient access control, which allows remote attackers to…
CVE-2004-1874 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in (1) deliver.asp and (2) billing.asp in A-CART Pro and A-CART 2.0 allow remote…