PT-2026-6547 · Unknown · Quick.Cart
Beniamin Jabłoński
·
Published
2026-02-05
·
Updated
2026-02-19
·
CVE-2026-23797
CVSS v4.0
6.9
Medium
| Vector | AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
Quick.Cart version 6.7
Quick.Cart (affected versions not specified)
Description
User passwords are stored in plaintext. An attacker with high privileges can view user passwords on the user editing page. The vendor was notified of this issue but did not provide details regarding vulnerable versions.
Recommendations
Update to a newer version that contains a fix for this vulnerability.
Fix
LPE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Quick.Cart