4 matches found
CVE-2022-35933 PrestaShop module Product Comments vulnerable to cross-site scripting (XSS)
This package is a PrestaShop module that allows users to post reviews and rate products. There is a vulnerability where the attacker could steal an administrator's cookie. The issue is fixed in version 5.0.2...
Stored cross-site scripting vulnerability in ZZCMS as***.php page
ZZCMS is a free website builder developed in asp language. A stored cross-site scripting vulnerability exists in the ZZCMS as.php page. An attacker can exploit the vulnerability to obtain a background administrator cookie...
iWebShop open source mall system has xss vulnerability
iWebShop is a PHP language and MYSQL database based on the development of B2B2C single-user and multi-user open source mall system . iWebShop has an xss vulnerability that can be exploited by attackers to obtain an administrator cookie...
Dimensions buy the system stored XSS can be comfortably background-vulnerability warning-the black bar safety net
fanwe buy the system thereXSScan obtain an administrator cookie and into the background First, in a goods to go in, inside there will be a refund of the message, will be there even if paid. Then comments can be addedXSS, the administrator every day view, the view will obtain administrator COOkie...