Basic Cart
Approved changes feed: RSS · Atom
cpe:2.3:a:backdropcms:basic_cart:*:*:*:*:*:backdrop:*:*
part: a version: * update: *
| Vendor | Backdropcms (c20e3035-f9db-563d-84ef-b3631140211a) |
|---|---|
| Product | Basic Cart (fbe386fb-f224-5331-9441-10b6ac5d05a1) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | backdrop |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/backdrop-contrib/basic_cart |
purl2cpe | 2026-06-01 10:12:18.250259 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2012-10004 |
vulnerable | 2026-06-08 05:00:46.837721 |
backdrop-contrib Basic Cart basic_cart.cart.inc basic_cart_checkout_form_submit cross site scripting
LOW (3.5)
A vulnerability was found in backdrop-contrib Basic Cart on Drupal. It has been classified as problematic. Affected is the function basic_cart_checkout_form_submit of the file basic_cart.cart.inc. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. Upgrading to version 1.x-1.1.1 is able to address this issue. The patch is identified as a10424ccd4b3b4b433cf33b73c1ad608b11890b4. It is recommended to upgrade the affected component. VDB-217950 is the identifier assigned to this vulnerability.
Published: 2023-01-11T06:21:17.015Z
Updated: 2024-08-06T21:36:02.285Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.