RSS   Podatności dla 'E-commerce website'   RSS

2021-07-23
 
CVE-2021-25204

CWE-79
 
 
Cross-site scripting (XSS) vulnerability in SourceCodester E-Commerce Website v 1.0 allows remote attackers to inject arbitrary web script or HTM via the subject field to feedback_process.php.

 
 
CVE-2021-25207

CWE-434
 
 
Arbitrary file upload vulnerability in SourceCodester E-Commerce Website v 1.0 allows attackers to execute arbitrary code via the file upload to prodViewUpdate.php.

 

 >>> Vendor: Sourcecodester 7 Produkty
Pisay online e-learning system
Travel management system
Responsive ordering system
E-commerce website
Complaint management system
News247 cms
Computer and mobile repair shop management system

Copyright 2024, cxsecurity.com

 

Back to Top