CVE-2017-10886

Cross-site scripting vulnerability in CS-Cart Japanese Edition v4.3.10 and earlier excluding v2 and v3, CS-Cart Multivendor Japanese Edition v4.3.10 and earlier excluding v2 and v3 allows an attacker to inject arbitrary web script or HTML via unspecified vectors...

CS-Cart Japanese Edition Cross-Site Scripting Vulnerability

CS-Cart Japanese Edition is a PHP and MySQL based e-commerce software system developed by CS-Cart team. The system supports third-party software extensions, customized promotion strategies, product filter definitions, etc. CS-Cart Multivendor Japanese Edition is an extension of CS-Cart Japanese...

PT-2017-15203 · Cs Cart · Cs-Cart Japanese Edition +1

Name of the Vulnerable Software and Affected Versions: CS-Cart Japanese Edition versions 4.3.10 and earlier excluding v2 and v3 CS-Cart Multivendor Japanese Edition versions 4.3.10 and earlier excluding v2 and v3 Description: A cross-site request forgery CSRF issue allows remote attackers to hija...

CVE-2017-2143

CS-Cart Japanese Edition v4.3.10-jp-1 and earlier, CS-Cart Multivendor Japanese Edition v4.3.10-jp-1 and earlier allows remote attackers to bypass access restriction to create a request to return a customer purchased item via rma.post.php...