CVE-2025-50849 | CS Cart up to 4.18.3 company_id resource injection

Inserito da Angelo Barbosa | Lug 31, 2025 | CVE

A vulnerability was found in CS Cart up to 4.18.3. It has been rated as problematic. Affected by this issue is some unknown functionality. The manipulation of the argument company_id leads to improper control of resource identifiers.

This vulnerability is handled as CVE-2025-50849. The attack may be launched remotely. There is no exploit available.

CVE-2025-50849 | CS Cart up to 4.18.3 company_id resource injection

Post correlati

CVE-2024-12588 | Shortcodes and Extra Features for Phlox Theme up to 2.16.4 on WordPress Staff Widget cross site scripting

CVE-2023-52453 | Linux Kernel up to 6.6.13/6.7.1 hisi_acc_vfio_pci Privilege Escalation (45f80b2f230d/6bda81e24a35/be12ad45e15b)

CVE-2023-48243 | Rexroth Nexo Cordless Nutrunner up to V1500-SP2 HTTP Request unrestricted upload

CVE-2024-44402 | D-Link DI-8100G 17.12.20A1 msp_info.htm command injection