Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

OSV
OSVadded 2016/04/28 1:59 a.m.2 views

CVE-2016-1205

Cross-site scripting XSS vulnerability in the shiro8 1 categoryfreearea additionplugin plugin 1.0 and 2 itemdetailfreearea additionplugin plugin 1.0 for EC-CUBE allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

6.1CVSS5.9AI score0.00309EPSS
Exploits0References4
CNVD
CNVDadded 2016/04/28 12:0 a.m.2 views

Shiro8 category_freearea_ addition_plugin for LOCKON EC-CUBE plugin and itemdetail_freearea_ addition_plugin for LOCKON EC-CUBE plugin Cross Site Scripting Vulnerability

LOCKON EC-CUBE is an open source e-commerce website building platform developed by LOCKON Corporation. The platform supports product login , user reviews , art layout , etc. Shiro8 categoryfreearea additionplugin and itemdetailfreearea additionplugin are Japan Shiro8 company for the EC-CUBE...

6.1CVSS6.1AI score0.00309EPSS
Exploits0References1
Japan Vulnerability Notes
Japan Vulnerability Notesadded 2016/04/26 5:18 a.m.3 views

Multiple shiro8 Co., Ltd. freearea_ addition_plugins for EC-CUBE vulnerable to cross-site scripting

Overview EC-CUBE plugin "categoryfreearea additionplugin" and "itemdetailfreearea additionplugin" provided by shiro8 Co., Ltd. contain a cross-site scripting vulnerability CWE-79. Gen Sato of TRADE WORKS Co.,Ltd. Security Dept. reported this vulnerability to IPA. JPCERT/CC coordinated with the...

6.1CVSS6AI score0.00309EPSS
Exploits0References5
Rows per page
Query Builder