Critical severity9.8NVD Advisory· Published Apr 17, 2018· Updated Jun 17, 2026

CVE-2018-5190

Description

PicturesPro Photo Cart 6 and 7 before Security-Patch-2018-B allows remote attackers to access arbitrary customer accounts via a modified cookie, related to pc_head.php, pc_login.php, and pc_login_page.php.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

Picturespro/Photo Cartllm-fuzzy
Range: 6.x, 7.x before Security-Patch-2018-B

Patches

Vulnerability mechanics

References

brianmccarthytech.blogspot.co.nz/2018/04/cve-2018-5190.htmlnvdThird Party Advisory
www.picturespro.com/support-forum/photo-cart/nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000