Early Impact Productcart — known CVE vulnerabilities
Every CVE whose affected-product data names Early Impact Productcart, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2003-0522 — CVSS 10.0 (critical): Multiple SQL injection vulnerabilities in ProductCart 1.5 through 2 allow remote attackers to (1) gain access to the admin control panel…
CVE-2005-0994 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in ProductCart 2.7 allow remote attackers to execute arbitrary SQL commands via (1) the Category or…
CVE-2004-2173 — CVSS 7.5 (high): SQL injection vulnerability in advSearch_h.asp in EarlyImpact ProductCart allows remote attackers to execute arbitrary SQL commands via the…
CVE-2003-0523 — CVSS 6.8 (medium): Cross-site scripting (XSS) vulnerability in msg.asp for certain versions of ProductCart allow remote attackers to execute arbitrary web…
CVE-2003-1304 — CVSS 5.0 (medium): EarlyImpact ProductCart 1.0 through 2.0 stores database/EIPC.mdb under the web root with insufficient access control, which allows remote…
CVE-2005-1968 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in ProductCart Ecommerce before 2.7 allows remote attackers to inject arbitrary web script or HTML…
CVE-2004-2174 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in Custva.asp in EarlyImpact ProductCart allows remote attackers to inject arbitrary Javascript…
CVE-2005-0995 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in ProductCart 2.7 allow remote attackers to inject arbitrary web script or HTML via…