CVE-2013-0118
CS-Cart before 3.0.6, when PayPal Standard Payments is configured, allows remote attackers to set the payment recipient via a modified value of the merchant's e-mail address, as demonstrated by setting the recipient to one's self.Enginsight
Vendor | Product | Version |
---|---|---|
cs-cart | cs-cart | 𝑥 ≤ 3.0.5 |
cs-cart | cs-cart | 3.0 |
cs-cart | cs-cart | 3.0.2 |
cs-cart | cs-cart | 3.0.3 |
cs-cart | cs-cart | 3.0.4 |
Common Weakness Enumeration