CVE-2021-20825
CVE-2021-20825
Cross-site scripting vulnerability in List (order management) item change plug-in (for EC-CUBE 3.0 series) Ver.1.1 and earlier allows a remote attacker to inject an arbitrary script via unspecified vectors.
Affected products
shiro8 Co., Ltd. · List (order management) item change plug-in (for EC-CUBE 3.0 series)Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →