CVE-2017-10886
CS-Cart Japanese Edition (and Multivendor Japanese Edition) is affected by CVE-2017-10886. A cross-site scripting vulnerability exists in CS-Cart Japanese Edition versions 4.3.10 and earlier (excluding v2/v3), enabling an attacker to inject arbitrary web script or HTML via unspecified vectors. Th...