Vulnerabilities (CVE)

Filtered by vendor Wstmart Subscribe
Filtered by product Wstmart
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-20367 1 Wstmart 1 Wstmart 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
The "mall some commodity details: commodity consultation" component in WSTMart 2.0.8_181212 has stored XSS via the consultContent parameter, as demonstrated by the index.php/home/goodsconsult/add.html URI.
CVE-2018-19138 1 Wstmart 1 Wstmart 2024-11-21 6.8 MEDIUM 8.8 HIGH
WSTMart 2.0.7 has CSRF via the index.php/admin/staffs/add.html URI.