Vulnerabilities (CVE)

Filtered by vendor Codenx Subscribe
Filtered by product Shopnx
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-12519 1 Codenx 1 Shopnx 2024-02-28 4.0 MEDIUM 8.8 HIGH
An issue was discovered in ShopNx through 2017-11-17. The vulnerability allows a remote attacker to upload any malicious file to a Node.js application. An attacker can upload a malicious HTML file that contains a JavaScript payload to steal a user's credentials.