3 matches found
CVE-2019-6016
Cross-site scripting vulnerability in REMISE Payment Module 2.11, 2.12 and 2.13 version 3.0.12 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2019-6016
The CVE-2019-6016 issue affects the REMISE Payment Module for EC-CUBE (versions 3.0.12 and earlier). The root cause is lack of proper validation of client-side data, enabling a Cross-site Scripting (CWE-79) where an arbitrary script could be executed in the web browser of users accessing the prod...
JVN#59436681: Multiple vulnerabilities in EC-CUBE module "REMISE Payment module (2.11, 2.12 and 2.13)"
EC-CUBE module "REMISE Payment module 2.11, 2.12 and 2.13" provided by REMISE Corporation contains multiple vulnerabilities listed below. Cross-site scripting CWE-79 - CVE-2019-6016 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N| Base Score: 6.1 CVSS v2|...