Farktor E-commerce Package — known CVE vulnerabilities
Every CVE whose affected-product data names Farktor E-commerce Package, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2025-10969 — CVSS 9.8 (critical): Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Farktor Software E-Commerce Services…
CVE-2025-13002 — CVSS 8.2 (high): Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Farktor Software E-Commerce…
CVE-2025-13004 — CVSS 6.3 (medium): Authorization Bypass Through User-Controlled Key vulnerability in Farktor Software E-Commerce Services Inc. E-Commerce Package allows…