CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
Percentile
49.5%
Zen Cart is an open source system for creating shopping websites. Zen Cart Japanese version contains a cross-site scripting vulnerability.
An arbitrary script may be executed on the web browser of a user who is logged on as an administrator.
For Zen Cart v1.5 ja variants:
Update the software
Update to the latest version according to the information provided by the developer.
For Zen Cart v1.3 jp variants:
Apply the patch
Apply the appropriate patch according to the information provided by the developer.