Cs-cart - Cs-cart CVE

Filtered by vendor Cs-cart Subscribe

Filtered by product Cs-cart

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-32202	1 Cs-cart	1 Cs-cart	2021-09-22	4.3 MEDIUM	6.1 MEDIUM
In CS-Cart version 4.11.1, it is possible to induce copy-paste XSS by manipulating the "post description" filed in the blog post creation page.
CVE-2017-10886	1 Cs-cart	2 Cs-cart, Cs-cart Multivendor	2017-12-04	3.5 LOW	5.4 MEDIUM
Cross-site scripting vulnerability in CS-Cart Japanese Edition v4.3.10 and earlier (excluding v2 and v3), CS-Cart Multivendor Japanese Edition v4.3.10 and earlier (excluding v2 and v3) allows an attacker to inject arbitrary web script or HTML via unspecified vectors.

Vulnerabilities (CVE)