RSS   Vulnerabilities for 'Wstmart'   RSS

2018-12-22
 
CVE-2018-20367

CWE-79
 

 
The "mall some commodity details: commodity consultation" component in WSTMart 2.0.8_181212 has stored XSS via the consultContent parameter, as demonstrated by the index.php/home/goodsconsult/add.html URI.

 
2018-11-09
 
CVE-2018-19138

CWE-352
 

 
WSTMart 2.0.7 has CSRF via the index.php/admin/staffs/add.html URI.

 


Copyright 2024, cxsecurity.com

 

Back to Top