RSS   Vulnerabilities for 'Shopkit'   RSS

2021-09-24
 
CVE-2020-20508

CWE-79
 

 
Shopkit v2.7 contains a reflective cross-site scripting (XSS) vulnerability in the /account/register component, which allows attackers to hijack user credentials via a crafted payload in the E-Mail text field.

 


Copyright 2024, cxsecurity.com

 

Back to Top