Medium severity6.1NVD Advisory· Published Mar 22, 2018· Updated Jun 17, 2026
CVE-2018-8906
CVE-2018-8906
Description
dsmall v20180320 has XSS via a crafted street address to public/index.php/home/memberaddress/index.html, which is mishandled at public/index.php/home/memberaddress/edit/address_id/2.html.
Affected products
1Patches
Vulnerability mechanics
References
1- github.com/xuheunbaicai/cangku/blob/master/cve/dsmall_v20180320_bug.mdnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.