Medium severity5.4NVD Advisory· Published Nov 17, 2017· Updated Jun 17, 2026
CVE-2017-10886
CVE-2017-10886
Description
Cross-site scripting vulnerability in CS-Cart Japanese Edition v4.3.10 and earlier (excluding v2 and v3), CS-Cart Multivendor Japanese Edition v4.3.10 and earlier (excluding v2 and v3) allows an attacker to inject arbitrary web script or HTML via unspecified vectors.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
45cpe:2.3:a:cs-cart:cs-cart:4.0.1:*:*:ja:*:*:*:*+ 20 more
- cpe:2.3:a:cs-cart:cs-cart:4.0.1:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.0.2:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.0.3:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.1.1:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.1.2:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.1.3:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.1.4:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.2.1:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.2.2:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.2.3:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.2.4:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.3.10:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.3.1:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.3.2:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.3.3:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.3.4:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.3.5:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.3.6:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.3.7:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.3.8:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart:4.3.9:*:*:ja:*:*:*:*
cpe:2.3:a:cs-cart:cs-cart_multivendor:4.0.1:*:*:ja:*:*:*:*+ 20 more
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.0.1:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.0.2:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.0.3:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.1.1:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.1.2:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.1.3:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.1.4:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.2.1:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.2.2:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.2.3:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.2.4:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.3.10:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.3.1:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.3.2:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.3.3:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.3.4:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.3.5:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.3.6:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.3.7:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.3.8:*:*:ja:*:*:*:*
- cpe:2.3:a:cs-cart:cs-cart_multivendor:4.3.9:*:*:ja:*:*:*:*
<=4.3.10 (excluding v2 and v3)+ 2 more
- (no CPE)range: <=4.3.10 (excluding v2 and v3)
- (no CPE)range: <=4.3.10 (excluding v2 and v3)
- (no CPE)range: v4.3.10 and earlier (excluding v2 and v3)
Patches
Vulnerability mechanics
References
2- tips.cs-cart.jp/fix-jvn-29602086.htmlnvdVendor Advisory
- jvn.jp/en/jp/JVN29602086/index.htmlnvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.