← back
CVE-2013-5913

CVE-2013-5913

EPSS 1.4%
Cross-site scripting (XSS) vulnerability in the getRecommSearch function in recommlist.php in OXID eShop before 4.6.7, Professional and Community Edition 4.7.x before 4.7.8, and Enterprise Edition 5.x before 5.0.8 allows remote attackers to inject arbitrary web script or HTML via the searchrecomm parameter.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/98235http://secunia.com/advisories/55193https://exchange.xforce.ibmcloud.com/vulnerabilities/87760http://wiki.oxidforge.org/Security_bulletins/2013-001http://www.securityfocus.com/bid/62901