RSS   Podatności dla 'Iorder'   RSS

2021-12-20
 
CVE-2021-43440

CWE-79
 

 
Multiple Stored XSS Vulnerabilities in the Source Code of iOrder 1.0 allow remote attackers to execute arbitrary code via signup form in the Name and Phone number field.

 
 
CVE-2021-43441

CWE-74
 

 
An HTML Injection Vulnerability in iOrder 1.0 allows the remote attacker to execute Malicious HTML codes via the signup form

 


Copyright 2024, cxsecurity.com

 

Back to Top