VYPR
Medium severity5.3NVD Advisory· Published Apr 28, 2017· Updated Jun 17, 2026

CVE-2017-2139

CVE-2017-2139

Description

CS-Cart Japanese Edition v4.3.10 and earlier (excluding v2 and v3), CS-Cart Multivendor Japanese Edition v4.3.10 and earlier (excluding v2 and v3) allows remote attackers to bypass access restriction to obtain customer information via orders.pre.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

5
  • cpe:2.3:a:frogman_office_inc:cs-cart:*:*:*:*:japanese_edition:*:*:*+ 1 more
    • cpe:2.3:a:frogman_office_inc:cs-cart:*:*:*:*:japanese_edition:*:*:*range: <=4.3.10
    • cpe:2.3:a:frogman_office_inc:cs-cart:*:*:*:*:multivendor_japanese_edition:*:*:*range: <=4.3.10
  • <=4.3.10 (excluding v2 and v3)+ 2 more
    • (no CPE)range: <=4.3.10 (excluding v2 and v3)
    • (no CPE)range: <=4.3.10 (excluding v2 and v3)
    • (no CPE)range: v4.3.10 and earlier (excluding v2 and v3)

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.