GCVE - cpe:2.3:a:abantecart:abantecart:1.2.8:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:abantecart:abantecart:1.2.8:*:*:*:*:*:*:*

part: a version: 1.2.8 update: *

Vendor	Abantecart (`3857097e-9662-5e7d-b290-ff0ef57eae1f`)
Product	Abantecart (`11871acc-6bd8-5a79-bec4-2b97478c1f45`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
`pkg:docker/abantecart`	purl2cpe	2026-06-01 10:12:29.713357
`pkg:docker/abantecart/abantecart`	purl2cpe	2026-06-01 10:12:29.713358
`pkg:github/abantecart/abantecart-src`	purl2cpe	2026-06-01 10:12:29.713360

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2016-10755`	vulnerable	2026-06-03 14:35:29.785325	Details available AbanteCart 1.2.8 allows SQL Injection via the source_language parameter to admin/controller/pages/localisation/language.php and core/lib/language_manager.php, or via POST data to admin/controller/pages/tool/backup.php and admin/model/tool/backup.php. Published: 2019-05-24T17:41:01.000Z Updated: 2024-08-06T03:30:20.172Z Open on db.gcve.eu Reference links https://demo.ripstech.com/projects/abantecart_1.2.8 https://blog.ripstech.com/2016/abantecart-multiple-sql-injections/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.