RSS   Vulnerabilities for 'Smartstore'   RSS

2021-05-12
 
CVE-2021-32607

NVD-CWE-noinfo
 

 
An issue was discovered in Smartstore (aka SmartStoreNET) through 4.1.1. Views/PrivateMessages/View.cshtml does not call HtmlUtils.SanitizeHtml on a private message.

 
 
CVE-2021-32608

NVD-CWE-noinfo
 

 
An issue was discovered in Smartstore (aka SmartStoreNET) through 4.1.1. Views/Boards/Partials/_ForumPost.cshtml does not call HtmlUtils.SanitizeHtml on certain text for a forum post.

 

 >>> Vendor: Smartstore 2 Products
Smartstorenet
Smartstore


Copyright 2024, cxsecurity.com

 

Back to Top