Medium severity6.1OSV Advisory· Published Mar 21, 2019· Updated Jun 17, 2026
CVE-2018-20141
CVE-2018-20141
Description
AbanteCart 1.2.12 has reflected cross-site scripting (XSS) via the sort parameter, as demonstrated by a /apparel--accessories?sort= substring.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
21.2.10, 1.2.11, 1.2.12, …+ 1 more
- (no CPE)range: 1.2.10, 1.2.11, 1.2.12, …
- (no CPE)range: =1.2.12
Patches
Vulnerability mechanics
References
2- packetstormsecurity.com/files/151305/Abantecart-1.2.12-Cross-Site-Scripting.htmlnvdThird Party AdvisoryVDB Entry
- seclists.org/fulldisclosure/2019/Jan/59nvdMailing ListThird Party Advisory
News mentions
0No linked articles in our index yet.