CVE-2020-5680

2020-12-0312:15:12

Google

osv.dev

6.9 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

64.6%

JSON

Improper input validation vulnerability in EC-CUBE versions from 3.0.5 to 3.0.18 allows a remote attacker to cause a denial-of-service (DoS) condition via unspecified vector.

CPENameOperatorVersion
ec-cubeeq3.0.15
ec-cubeeq3.0.9
ec-cubeeq3.0.11-pre
ec-cubeeq3.0.12-p1
ec-cubeeq3.0.10
ec-cubeeq3.0.14
ec-cubeeq3.0.7
ec-cubeeq3.0.17
ec-cubeeq3.0.8
ec-cubeeq3.0.11

Name	Operator	Version
ec-cube	eq	3.0.15
ec-cube	eq	3.0.9
ec-cube	eq	3.0.11-pre
ec-cube	eq	3.0.12-p1
ec-cube	eq	3.0.10
ec-cube	eq	3.0.14
ec-cube	eq	3.0.7
ec-cube	eq	3.0.17
ec-cube	eq	3.0.8
ec-cube	eq	3.0.11