Lucene search

K
osvGoogleOSV:GHSA-RWH8-H525-4JVJ
HistoryMay 24, 2022 - 5:35 p.m.

EC-CUBE Improper Restriction of Rendered UI Layers or Frames

2022-05-2417:35:20
Google
osv.dev
4

6.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

36.1%

Improper restriction of rendered UI layers or frames in EC-CUBE versions from 3.0.0 to 3.0.18 leads to clickjacking attacks. If a user accesses a specially crafted page while logged into the administrative page, unintended operations may be conducted.

6.7 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

36.1%

Related for OSV:GHSA-RWH8-H525-4JVJ