Vulnerabilities (CVE)

Filtered by vendor Jce-tech Subscribe
Filtered by product Auction Rss Content Script
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2009-3195 1 Jce-tech 1 Auction Rss Content Script 2024-11-21 4.3 MEDIUM N/A
Multiple cross-site scripting (XSS) vulnerabilities in JCE-Tech Auction RSS Content Script 3.0 allow remote attackers to inject arbitrary web script or HTML via the id parameter to (1) rss.php and (2) search.php.