3 matches found
CVE-2018-1000887
Peel shopping peel-shopping910 version contains a Cross Site Scripting XSS vulnerability that can result in an authenticated user injecting java script code in the "Site Name EN" parameter. This attack appears to be exploitable if the malicious user has access to the administration account...
Cross site scripting
Peel shopping peel-shopping910 version contains a Cross Site Scripting XSS vulnerability that can result in an authenticated user injecting java script code in the "Site Name EN" parameter. This attack appears to be exploitable if the malicious user has access to the administration account...
Peel-shopping Cross-Site Scripting Vulnerability
Peel shopping is an open source e-commerce solution. A cross-site scripting vulnerability exists in Peel shopping peel-shopping910 version. A remote attacker can exploit this vulnerability by accessing an administrative account and injecting JavaScript code into the 'Site Name EN' parameter...