3 matches found
CVE-2020-5680
Improper input validation vulnerability in EC-CUBE versions from 3.0.5 to 3.0.18 allows a remote attacker to cause a denial-of-service DoS condition via unspecified vector...
CVE-2020-5680
EC-CUBE vulnerability CVE-2020-5680: Improper input validation in EC-CUBE 3.0.5–3.0.18 allows a remote attacker to cause a denial-of-service via an unspecified vector. Documented by NVD, RH advisory, OSV, GHSA/JVN; CVSSv3.1 base score 7.5 (HIGH) and CVSSv2 5.0 (MEDIUM). Root cause: input validati...
JVN#24457594: Multiple vulnerabilities in EC-CUBE
EC-CUBE provided by EC-CUBE CO.,LTD. contains multiple vulnerabilities listed below. Clickjacking attacks CWE-1021 - CVE-2020-5679 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N| Base Score: 4.3 CVSS v2| AV:N/AC:H/Au:N/C:N/I:P/A:N| Base Score: 2.6 Imprope...