Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistJpcertCVELIST:CVE-2021-20717
HistoryMay 10, 2021 - 9:10 a.m.

CVE-2021-20717

2021-05-1009:10:14
jpcert
www.cve.org
2

0.005 Low

EPSS

Percentile

75.7%

JSON

Cross-site scripting vulnerability in EC-CUBE 4.0.0 to 4.0.5 allows a remote attacker to inject a specially crafted script in the specific input field of the EC web site which is created using EC-CUBE. As a result, it may lead to an arbitrary script execution on the administrator’s web browser.

CNA Affected

[
  {
    "product": "EC-CUBE",
    "vendor": "EC-CUBE CO.,LTD.",
    "versions": [
      {
        "status": "affected",
        "version": "4.0.0 to 4.0.5"
      }
    ]
  }
]

Related

osv 2
prion 1
github 1
jvn 1
cve 1
nvd 1
githubexploit 1
osv
osv
EC-CUBE Cross-site scripting vulnerability
2022-05-24 19:01:56
CVE-2021-20717
2021-05-10 10:15:07
prion
prion
Cross site scripting
2021-05-10 10:15:00
github
github
EC-CUBE Cross-site scripting vulnerability
2022-05-24 19:01:56
jvn
jvn
JVN#97554111: EC-CUBE vulnerable to cross-site scripting
2021-05-10 00:00:00
cve
cve
CVE-2021-20717
2021-05-10 10:15:07
nvd
nvd
CVE-2021-20717
2021-05-10 10:15:07
githubexploit
githubexploit
Exploit for Cross-site Scripting in Ec-Cube
2021-05-29 08:08:21

0.005 Low

EPSS

Percentile

75.7%

JSON
Related for CVELIST:CVE-2021-20717
osv2prion1github1jvn1cve1nvd1githubexploit1