3 matches found
CVE-2021-24991
The WooCommerce PDF Invoices & Packing Slips WordPress plugin before 2.10.5 does not escape the tab and section parameters before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting in the admin dashboard...
Solidus Input Validation Error Vulnerability
Solidus is an open source e-commerce system. An input validation error vulnerability exists in Solidus versions prior to 2.8.6, prior to 2.9.6, and prior to 2.10.2. The vulnerability stems from a network system or product that does not properly validate incoming data. No detailed vulnerability...
CloudView NMS Cross-Site Scripting Vulnerability
CloudView NMS is a network management and monitoring system that automatically discovers, monitors and performs tasks from CloudView NMS USA. A cross-site scripting vulnerability exists in CloudView NMS versions prior to 2.10a. A remote attacker can exploit this vulnerability to inject arbitrary...