3 matches found
CVE-2020-12683
Katyshop2 before 2.12 has multiple stored XSS issues...
CVE-2020-12683
Katyshop2 before 2.12 has multiple stored XSS issues...
CVE-2020-12683
Katyshop2 (PHP/MySQL-based e-commerce suite) is affected by CVE-2020-12683 due to stored XSS in versions prior to 2.12. The root cause is improper validation of client-side data in the web app, enabling the attacker to inject and execute client-side scripts. Public references in multiple sources ...