5 matches found
SPA-Cart eCommerce CMS 1.9.0.3 - Cross-Site Scripting
A vulnerability was found in SPA-Cart eCommerce CMS 1.9.0.3. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /search. The manipulation of the argument filterbrandid/filterprice leads to cross site scripting. The attack may be launched remotely...
SPA-Cart eCommerce CMS 1.9.0.3 Cross Site Scripting Vulnerability
Exploit Title: SPA-Cart eCommerce CMS 1.9.0.3 - Reflected XSS Exploit Author: CraCkEr Date: 20/08/2023 Vendor: SPA-Cart Vendor Homepage: https://spa-cart.com/ Software Link: https://demo.spa-cart.com/ Tested on: Windows 10 Pro Impact: Manipulate the content of the site CVE: CVE-2023-4547 CWE:...
CVE-2023-4547
creationtimestamp| type| source ---|---|--- 2023-08-26 12:14:49+00:00| seen| https://t.me/cibsecurity/69241...
CVE-2023-4547
A vulnerability was found in SPA-Cart eCommerce CMS 1.9.0.3. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /search. The manipulation of the argument filterbrandid/filterprice leads to cross site scripting. The attack may be launched remotely...
CVE-2023-4547
SPA-Cart eCommerce CMS 1.9.0.3 is affected by a cross-site scripting vulnerability in the /search endpoint. The issue stems from unsanitized input in the parameters filter[brandid] and filter[price] , which can be exploited remotely to inject script. Mitigation: upgrade to a version newer than 1....