VYPR

Cs Cart Vulns

by Hackerwahab

Source repositories

CVEs (1)

  • CVE-2025-50849HigJul 31, 2025
    risk 0.52cvss 8.0epss 0.00

    CS Cart 4.18.3 is vulnerable to Insecure Direct Object Reference (IDOR). The user profile functionality allows enabling or disabling stickers through a parameter (company_id) sent in the request. However, this operation is not properly validated on the server side. An…