Name: Abantecart
Author: Abantecart

🔍 What is Abantecart?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2025-50972

CRITICAL CVSS 9.8 Aug 27, 2025

CVE-2025-50972 is a critical SQL injection vulnerability in AbanteCart e-commerce software that allows unauthenticated attackers to execute arbitrary SQL commands. Attackers can extract, modify, or de...

CVE-2025-40626

MEDIUM CVSS 6.1 May 12, 2025

A reflected XSS vulnerability in AbanteCart v1.4.0 allows attackers to inject malicious JavaScript via the /about_us parameter. When victims click a specially crafted URL, attackers can steal session ...

CVE-2024-50802

MEDIUM CVSS 6.0 Oct 31, 2024

A SQL injection vulnerability in AbanteCart 1.4.0 allows attackers to execute arbitrary SQL commands via the id parameter in the update() function. This affects administrators using the email template...