Vulnerabilities (CVE)

Filtered by vendor Cyber-will Subscribe
Filtered by product Social-button Premium
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2016-1180 2 Cyber-will, Ec-cube 2 Social-button Premium, Ec-cube 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
Cross-site scripting (XSS) vulnerability in the Cyber-Will Social-button Premium plugin before 1.1 for EC-CUBE 2.13.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.