Description
SQL injection vulnerability in index.php in CubeCart 4.3.3 allows remote attackers to execute arbitrary SQL commands via the searchStr parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin ARForms:Wordpress Form Builder Arbitrary File Deletion (3.7.1)
WordPress Plugin ToolPage Cross-Site Scripting (1.6.1)
MySQL CVE-2019-2584 Vulnerability (CVE-2019-2584)
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-7449)
WordPress Plugin My Tickets Cross-Site Request Forgery (1.9.10)