📦 Cs Cart Multivendor

CVE-2023-26686 is a critical file upload vulnerability in CS-Cart MultiVendor 4.16.1 that allows remote attackers to upload malicious files through the image upload feature when customizing a shop. Th...

This vulnerability allows attackers to modify any user's profile in CS-Cart MultiVendor 4.16.1 through crafted POST requests due to insufficient authorization checks. Attackers can potentially take ov...

This vulnerability allows remote attackers to execute arbitrary code on CS-Cart MultiVendor systems through directory traversal in zip file handling during add-on installation. Attackers can upload ma...

This is a cross-site scripting (XSS) vulnerability in CS-Cart MultiVendor e-commerce platform that allows attackers to inject malicious scripts via the product_data parameter in the admin interface. A...