Lucene search
JpcertCVELIST:CVE-2013-3652HistoryOct 03, 2022 - 4:14 p.m.
CVE-2013-3652
2022-10-0316:14:46
jpcert
www.cve.org
Cross-site scripting (XSS) vulnerability in data/class/pages/products/LC_Page_Products_List.php in LOCKON EC-CUBE 2.11.0 through 2.12.4 allows remote attackers to inject arbitrary web script or HTML via vectors involving the classcategory_id2 field, a different vulnerability than CVE-2013-3653.
Related
cve
cve
CVE-2013-3653
2022-10-03 16:14:45
CVE-2013-3652
2022-10-03 16:14:46
nvd
nvd
CVE-2013-3652
2013-06-30 20:56:30
CVE-2013-3653
2013-06-30 20:56:30
prion
prion
Cross site scripting
2013-06-30 20:56:00
Cross site scripting
2013-06-30 20:56:00
cvelist
cvelist
CVE-2013-3653
2022-10-03 16:14:45
jvn
jvn
JVN#98665228: EC-CUBE vulnerable to cross-site scripting
2013-06-27 00:00:00
JVN#07192063: EC-CUBE vulnerable to cross-site scripting
2013-06-27 00:00:00