MidnightBSD

Advisories for picturespro

CVE-2018-5190 MEDIUM

PicturesPro Photo Cart 6 and 7 before Security-Patch-2018-B allows remote attackers to access arbitrary customer accounts via a modified cookie, related to pc_head.php, pc_login.php, and pc_login_page.php.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-565,

Products Affected

Vendor Product Version
picturespro picturespro *