Lucene search
JpcertCVELIST:CVE-2020-5679HistoryDec 03, 2020 - 11:15 a.m.
CVE-2020-5679
2020-12-0311:15:32
jpcert
www.cve.org
Improper restriction of rendered UI layers or frames in EC-CUBE versions from 3.0.0 to 3.0.18 leads to clickjacking attacks. If a user accesses a specially crafted page while logged into the administrative page, unintended operations may be conducted.
CNA Affected
[
{
"product": "EC-CUBE",
"vendor": "EC-CUBE CO.,LTD.",
"versions": [
{
"status": "affected",
"version": "versions from 3.0.0 to 3.0.18"
}
]
}
]Related
cve
cve
CVE-2020-5679
2020-12-03 12:15:11
osv
osv
CVE-2020-5679
2020-12-03 12:15:11
EC-CUBE Improper Restriction of Rendered UI Layers or Frames
2022-05-24 17:35:20
nvd
nvd
CVE-2020-5679
2020-12-03 12:15:11
prion
prion
Input validation
2020-12-03 12:15:00
github
github
EC-CUBE Improper Restriction of Rendered UI Layers or Frames
2022-05-24 17:35:20
jvn
jvn
JVN#24457594: Multiple vulnerabilities in EC-CUBE
2020-12-03 00:00:00