Shuup - Shuup CVE

Filtered by vendor Shuup Subscribe

Filtered by product Shuup

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-25963	1 Shuup	1 Shuup	2021-10-07	4.3 MEDIUM	6.1 MEDIUM
In Shuup, versions 1.6.0 through 2.10.8 are vulnerable to reflected Cross-Site Scripting (XSS) that allows execution of arbitrary javascript code on a victim browser. This vulnerability exists due to the error page contents not escaped.

Vulnerabilities (CVE)