3 matches found
CVE-2025-13239
CVE-2025-13239 affects Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution v5. The issue involves the file /submit_checkout where manipulating the argument order_total_amount and cart_total_amount enforces a behavioral workflow, with remote-exploitation potential. Public exploit...
CVE-2025-13186
CVE-2025-13186 affects Bdtask/CodeCanyon Isshue Multi Store eCommerce Shopping Cart Solution (up to 4.0). The vulnerability is in the file /dashboard/Ccustomer/manage_customer (also seen as /dashboard/Ccustomer/manage customer) where manipulation of the Search argument causes cross-site scripting...
CVE-2021-47769
CVE-2021-47769 affects Isshue Shopping Cart 3.5. The vulnerability is a persistent cross-site scripting (XSS) in the title input fields across stock, customer, and invoice modules. An attacker with elevated privileges can inject scripts that execute on preview, potentially enabling session hijack...