Vulnerabilities (CVE)

Filtered by vendor Cubecart Subscribe
Filtered by product Cubecart
Total 29 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2026-35496 1 Cubecart 1 Cubecart 2026-06-17 N/A 2.7 LOW
A path traversal vulnerability exists in CubeCart prior to 6.6.0, which may allow a user with an administrative privilege to access higher-level directories that should not be accessible.
CVE-2026-34018 1 Cubecart 1 Cubecart 2026-06-17 N/A 9.8 CRITICAL
An SQL injection vulnerability exists in CubeCart prior to 6.6.0, which may allow an attacker to execute an arbitrary SQL statement on the product.
CVE-2026-21719 1 Cubecart 1 Cubecart 2026-06-17 N/A 7.2 HIGH
An OS command injection vulnerability exists in CubeCart prior to 6.6.0, which may allow a user with an administrative privilege to execute an arbitrary OS command.
CVE-2025-59413 1 Cubecart 1 Cubecart 2026-06-17 N/A 6.5 MEDIUM
CubeCart is an ecommerce software solution. Prior to version 6.5.11, a logic flaw exists in the newsletter subscription endpoint that allows an attacker to unsubscribe any user without their consent. By changing the value of the force_unsubscribe parameter in the POST request to 1, an attacker can force the removal of any valid subscriber’s email address. This issue has been patched in version 6.5.11.
CVE-2025-59412 1 Cubecart 1 Cubecart 2026-06-17 N/A 5.4 MEDIUM
CubeCart is an ecommerce software solution. Prior to version 6.5.11, a vulnerability exists in the product reviews feature where user-supplied input is not properly sanitized before being displayed. An attacker can submit HTML tags inside the review description field. Once the administrator approves the review, the injected HTML is rendered on the product page for all visitors. This could be used to redirect users to malicious websites or to display unwanted content. This issue has been patched in version 6.5.11.
CVE-2025-59411 1 Cubecart 1 Cubecart 2026-06-17 N/A 5.4 MEDIUM
CubeCart is an ecommerce software solution. Prior to version 6.5.11, the contact form’s Enquiry field accepts raw HTML and that HTML is included verbatim in the email sent to the store admin. By submitting HTML in the Enquiry, the admin receives an email containing that HTML. This indicates user input is not being escaped or sanitized before being output in email (and possibly when re-rendering the form), leading to Cross-Site Scripting / HTML injection risk in email clients or admin UI. This issue has been patched in version 6.5.11.
CVE-2025-59335 1 Cubecart 1 Cubecart 2026-06-17 N/A 7.1 HIGH
CubeCart is an ecommerce software solution. Prior to version 6.5.11, there is an absence of automatic session expiration following a user's password change. This oversight poses a security risk, as if a user forgets to log out from a location where they accessed their account, an unauthorized user can maintain access even after the password has been changed. Due to this bug, if an account has already been compromised, the legitimate user has no way to revoke the attacker’s access. The malicious actor retains full access to the account until their session naturally expires. This means the account remains insecure even after the password has been changed. This issue has been patched in version 6.5.11.
CVE-2024-34832 1 Cubecart 1 Cubecart 2026-06-17 N/A 9.8 CRITICAL
Directory Traversal vulnerability in CubeCart v.6.5.5 and before allows an attacker to execute arbitrary code via a crafted file uploaded to the _g and node parameters.
CVE-2024-33438 1 Cubecart 1 Cubecart 2026-06-17 N/A 8.0 HIGH
File Upload vulnerability in CubeCart before 6.5.5 allows an authenticated user to execute arbitrary code via a crafted .phar file.
CVE-2023-47675 1 Cubecart 1 Cubecart 2026-06-17 N/A 7.2 HIGH
CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to execute an arbitrary OS command.
CVE-2023-47283 1 Cubecart 1 Cubecart 2026-06-17 N/A 4.9 MEDIUM
Directory traversal vulnerability in CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to obtain files in the system.
CVE-2023-42428 1 Cubecart 1 Cubecart 2026-06-17 N/A 6.5 MEDIUM
Directory traversal vulnerability in CubeCart prior to 6.5.3 allows a remote authenticated attacker with an administrative privilege to delete directories and files in the system.
CVE-2023-38130 1 Cubecart 1 Cubecart 2026-06-17 N/A 8.1 HIGH
Cross-site request forgery (CSRF) vulnerability in CubeCart prior to 6.5.3 allows a remote unauthenticated attacker to delete data in the system.
CVE-2021-33394 1 Cubecart 1 Cubecart 2026-06-17 5.5 MEDIUM 5.4 MEDIUM
Cubecart 6.4.2 allows Session Fixation. The application does not generate a new session cookie after the user is logged in. A malicious user is able to create a new session cookie value and inject it to a victim. After the victim logs in, the injected cookie becomes valid, giving the attacker access to the user's account through the active session.
CVE-2018-20716 1 Cubecart 1 Cubecart 2026-06-17 7.5 HIGH 9.8 CRITICAL
CubeCart before 6.1.13 has SQL Injection via the validate[] parameter of the "I forgot my Password!" feature.
CVE-2018-20703 1 Cubecart 1 Cubecart 2026-06-17 3.5 LOW 5.4 MEDIUM
CubeCart 6.2.2 has Reflected XSS via a /{ADMIN-FILE}/ query string.
CVE-2017-2117 1 Cubecart 1 Cubecart 2026-06-17 4.0 MEDIUM 4.9 MEDIUM
Directory traversal vulnerability in CubeCart versions prior to 6.1.5 allows attacker with administrator rights to read arbitrary files via unspecified vectors.
CVE-2017-2098 1 Cubecart 1 Cubecart 2026-06-17 4.0 MEDIUM 6.5 MEDIUM
Directory traversal vulnerability in CubeCart versions prior to 6.1.4 allows remote authenticated attackers to read arbitrary files via unspecified vectors.
CVE-2017-2090 1 Cubecart 1 Cubecart 2026-06-17 4.0 MEDIUM 6.5 MEDIUM
Directory traversal vulnerability in CubeCart versions prior to 6.1.4 allows remote authenticated attackers to read arbitrary files via unspecified vectors.
CVE-2015-6928 1 Cubecart 1 Cubecart 2026-06-17 6.8 MEDIUM N/A
classes/admin.class.php in CubeCart 5.2.12 through 5.2.16 and 6.x before 6.0.7 does not properly validate that a password reset request was made, which allows remote attackers to change the administrator password via a recovery request with a space character in the validate parameter and the administrator email in the email parameter.