Vulnerabilities (CVE)

Filtered by vendor Shiro8 Subscribe
Filtered by product List \(order Management\) Item Change
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2021-20825 2 Ec-cube, Shiro8 2 Ec-cube, List \(order Management\) Item Change 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting vulnerability in List (order management) item change plug-in (for EC-CUBE 3.0 series) Ver.1.1 and earlier allows a remote attacker to inject an arbitrary script via unspecified vectors.