) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
Search Parameters:
- Results Type: Overview
- Keyword (text search): cpe:2.3:a:expresscart_project:expresscart:1.1.5:*:*:*:*:node.js:*:*
- CPE Name Search: true
There are 1 matching records.
Displaying matches 1 through 1.
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2018-12457 |
expressCart before 1.1.6 allows remote attackers to create an admin user via a /admin/setup Referer header. Published: June 15, 2018; 10:29:00 AM -0400 |
V3.0: 8.8 HIGH V2.0: 6.5 MEDIUM |