dingfanzu 跨站脚本漏洞

dingfanzu is a php-based food ordering website developed by gk2007, an individual developer. A cross-site scripting vulnerability exists in dingfanzu, which originates from the parameter address-name in the scripts/order.js file in the Order Checkout component and can lead to cross-site scripting...

PT-2024-37404 · Unknown · Spa-Cartcms

Name of the Vulnerable Software and Affected Versions: spa-cartcms version 1.9.0.6 Description: A problematic issue has been found in the Checkout Page component, affecting the processing of the file /checkout. The manipulation of the quantity argument with the input -10 leads to enforcement of...