3 matches found
EUVD-2020-21452
Malware in sbrugna...
osCommerce 2.3.4.1 - 'title' Persistent Cross-Site Scripting
Exploit Title: osCommerce 2.3.4.1 - 'title' Persistent Cross-Site Scripting Date: 2020-11-19 Exploit Author: Emre Aslan Vendor Homepage: https://www.oscommerce.com/ Version: 2.3.4.1 Tested on: Windows & XAMPP == Tutorial https://HOST/catalog/admin/newsletters.php?action=new 3- Enter the XSS paylo...
Cross-site Scripting (XSS)
shopware/shopware is vulnerable to cross-site scripting XSS. The vulnerability exists as the unsanitized value of the newsletter title, headline, is displayed in the description of campaignKey...