CVE-2018-10827 — CVSS 7.5 (high): LiteCart before 2.1.2 allows remote attackers to cause a denial of service (memory consumption) via URIs that do not exist, because…
CVE-2022-27168 — CVSS 6.1 (medium): Cross-site scripting vulnerability in LiteCart versions prior to 2.4.2 allows a remote attacker to inject an arbitrary script via…
CVE-2014-7183 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in the search.php in LiteCart 1.1.2.1 and earlier allow remote attackers to inject…