RSS   Vulnerabilities for
'Ecommerce-codeigniter-bootstrap'
   RSS

2021-10-01
 
CVE-2021-40975

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in application/modules/admin/views/ecommerce/products.php in Ecommerce-CodeIgniter-Bootstrap (Codeigniter 3.1.11, Bootstrap 3.3.7) allows remote attackers to inject arbitrary web script or HTML via the search_title parameter.

 
2020-09-03
 
CVE-2020-25093

CWE-79
 

 
Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in blog.php. within application/views/templates/clothesshop, application/views/templates/onepage, and application/views/templates/redlabel.

 
 
CVE-2020-25092

CWE-79
 

 
Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in _parts/header.php, within application/views/templates/clothesshop, application/views/templates/greenlabel, and application/views/templates/redlabel.

 
 
CVE-2020-25091

CWE-79
 

 
Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/vendor/views/add_product.php.

 
 
CVE-2020-25090

CWE-79
 

 
Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/ecommerce/publish.php.

 
 
CVE-2020-25089

CWE-79
 

 
Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/ecommerce/discounts.php.

 
 
CVE-2020-25088

CWE-79
 

 
Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/blog/blogpublish.php.

 
 
CVE-2020-25087

CWE-79
 

 
Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/advanced_settings/languages.php.

 
 
CVE-2020-25086

CWE-79
 

 
Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/advanced_settings/adminUsers.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top